CWE-1044: Architecture with Number of Horizontal Layers Outside of Expected Range
The product's architecture contains too many - or too few - horizontal layers.
Last updated
Overview
While the interpretation of "expected range" may vary for each product or developer, CISQ recommends a default minimum of 4 layers and maximum of 8 layers.
Common consequences
What can happen when CWE-1044 is exploited.
Reduce Maintainability
Affects: Other
This issue makes it more difficult to maintain the product, which indirectly affects security by making it more difficult or time-consuming to find and/or fix vulnerabilities. It also might make it easier to introduce vulnerabilities.
How it happens
When it is introduced
Typically introduced during these phases of the software lifecycle.
Terminology & mappings
Mapped taxonomies
- OMG ASCMM (ASCMM-MNT-9)
Frequently asked questions
Common questions about CWE-1044.
- What is CWE-1044?
- The product's architecture contains too many - or too few - horizontal layers.
- What are the consequences of CWE-1044?
- Exploiting CWE-1044 can lead to: Reduce Maintainability.
References
- MITRE CWE definition (CWE-1044) (opens in a new tab)
- CWE-1044 vulnerabilities on NVD (opens in a new tab)
- Learn: What is a CWE?
Weakness data is sourced from the MITRE CWE catalog (v4.20). CVE associations are aggregated and kept current by RadicalNotion.AI.
Stay ahead of CWE-1044
Get alerted the moment a new CWE-1044 vulnerability affects your stack, with AI-written analysis, severity context, and remediation guidance.