Description
The source code contains elements such as source files that do not consistently provide a prologue or header that has been standardized for the project.
Standard prologues or headers may contain information such as module name, version number, author, date, purpose, function, assumptions, limitations, accuracy considerations, etc.
Potential Impact
Other
Reduce Maintainability
Other
Increase Analytical Complexity
Related Weaknesses
Frequently Asked Questions
What is CWE-1115?
CWE-1115 (Source Code Element without Standard Prologue) is a software weakness identified by MITRE's Common Weakness Enumeration. It is classified as a Base-level weakness. The source code contains elements such as source files that do not consistently provide a prologue or header that has been standardized for the project.
How can CWE-1115 be exploited?
Attackers can exploit CWE-1115 (Source Code Element without Standard Prologue) to reduce maintainability. This weakness is typically introduced during the Implementation phase of software development.
How do I prevent CWE-1115?
Follow secure coding practices, conduct code reviews, and use automated security testing tools (SAST/DAST) to detect this weakness early in the development lifecycle.
What is the severity of CWE-1115?
CWE-1115 is classified as a Base-level weakness (Medium abstraction). Its actual severity depends on the specific context and how the weakness manifests in your application.