CWE-1115: Source Code Element without Standard Prologue
The source code contains elements such as source files that do not consistently provide a prologue or header that has been standardized for the project.
Last updated
Overview
Standard prologues or headers may contain information such as module name, version number, author, date, purpose, function, assumptions, limitations, accuracy considerations, etc.
Common consequences
What can happen when CWE-1115 is exploited.
Reduce Maintainability
Affects: Other
This issue makes it more difficult to maintain the product due to insufficient analyzability, which indirectly affects security by making it more difficult or time-consuming to find and/or fix vulnerabilities. It also might make it easier to introduce vulnerabilities.
Increase Analytical Complexity
Affects: Other
The lack of a prologue can make it more difficult to accurately and quickly understand the associated code.
How it happens
When it is introduced
Typically introduced during these phases of the software lifecycle.