The source code uses symbolic constants, but it does not sufficiently place the definitions of these constants into a more centralized or isolated location.
Last updated
CWE-1107 (Insufficient Isolation of Symbolic Constant Definitions) is a base-level software weakness catalogued by MITRE in the Common Weakness Enumeration (CWE). It describes a recurring type of mistake that can lead to exploitable security vulnerabilities.
2 recorded CVEs are caused by CWE-1107 (Insufficient Isolation of Symbolic Constant Definitions). The highest-severity and most recent are shown first.
What can happen when CWE-1107 is exploited.
Reduce Maintainability
Affects: Other
This issue makes it more difficult to maintain the product, which indirectly affects security by making it more difficult or time-consuming to find and/or fix vulnerabilities. It also might make it easier to introduce vulnerabilities.
Typically introduced during these phases of the software lifecycle.
Common questions about CWE-1107.
The source code uses symbolic constants, but it does not sufficiently place the definitions of these constants into a more centralized or isolated location.
2 recorded CVEs are attributed to CWE-1107, including CVE-2024-38301, CVE-2024-0159.
Exploiting CWE-1107 can lead to: Reduce Maintainability.
2 recorded CVEs are caused by CWE-1107; none are currently in CISA's KEV catalog of actively exploited flaws.
Weakness data is sourced from the MITRE CWE catalog (v4.20). CVE associations are aggregated and kept current by RadicalNotion.AI.
Get alerted the moment a new CWE-1107 vulnerability affects your stack, with AI-written analysis, severity context, and remediation guidance.
