CWE-1120: Excessive Code Complexity

The code is too complex, as calculated using a well-defined, quantitative measure.

Recorded CVEs

With this primary weakness

KEVs

In the CISA KEV catalog

Not rated

Likelihood of exploit

Per MITRE

Class

Abstraction

MITRE classification

Overview

CWE-1120 (Excessive Code Complexity) is a class-level software weakness catalogued by MITRE in the Common Weakness Enumeration (CWE). It describes a recurring type of mistake that can lead to exploitable security vulnerabilities.

Common consequences

What can happen when CWE-1120 is exploited.

CWE-1120: Excessive Code Complexity

Overview

Common consequences

How it happens

When it is introduced

How to detect it

Automated Static Analysis

Frequently asked questions

What is CWE-1120?

How is CWE-1120 detected?

What are the consequences of CWE-1120?

References

Stay ahead of CWE-1120

Overview

Common consequences

How it happens

When it is introduced

How to detect it

Automated Static Analysis

Related weaknesses

Parent

Child

Frequently asked questions

What is CWE-1120?

How is CWE-1120 detected?

What are the consequences of CWE-1120?

References

Stay ahead of CWE-1120