CWE-489

Overview

CWE ID
489

CWE Name
Active Debug Code

CWE Abstraction
Base

CWE structure
Simple

CWE Status
Draft

Description

The application is deployed to unauthorized actors with debugging code still enabled or active, which can create unintended entry points or expose sensitive information.

Extended Description

A common development practice is to add "back door" code specifically designed for debugging or testing purposes that is not intended to be shipped or deployed with the application. These back door entry points create security risks because they are not c

Related CWEs

CWE ID	View ID	Nature	Ordinal
710	1000	ChildOf	Primary
215	1000	CanPrecede	Primary

Related CVEs

CVE
CVE-2020-25156
CVE-2021-1381
CVE-2021-1391
CVE-2021-1398
CVE-2022-32760
CVE-2022-38715
CVE-2023-21496
CVE-2023-1618
CVE-2022-29520
CVE-2022-33323
CVE-2023-4804
CVE-2023-32645
CVE-2023-0954
CVE-2023-34346
CVE-2024-28008
CVE-2024-32047
CVE-2024-21785
CVE-2023-0954
CVE-2023-34346
CVE-2024-28008
CVE-2024-32047
CVE-2024-21785
CVE-2024-21785
CVE-2024-21827
CVE-2023-49593
CVE-2024-7756
CVE-2024-41999
CVE-2024-41999
CVE-2024-41999
CVE-2024-41999
CVE-2024-41999
CVE-2024-41999