Class weakness

Incomplete

CWE-506: Embedded Malicious Code

The product contains code that appears to be malicious in nature.

Recorded CVEs

With this primary weakness

KEVs

In the CISA KEV catalog

Not rated

Likelihood of exploit

Per MITRE

Class

Abstraction

MITRE classification

Overview

Malicious flaws have acquired colorful names, including Trojan horse, trapdoor, timebomb, and logic-bomb. A developer might insert malicious code with the intent to subvert the security of a product or its host system at some time in the future. It generally refers to a program that performs a useful service but exploits rights of the program's user in a way the user does not intend.

CWE-506: Embedded Malicious Code

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

How to prevent it

How to detect it

Manual Static Analysis - Binary or Bytecode

Dynamic Analysis with Manual Results Interpretation

Manual Static Analysis - Source Code

Automated Static Analysis

Code examples

Illustrative examples

Terminology & mappings

Mapped taxonomies

Attack patterns

Frequently asked questions

What is CWE-506?

What CVEs are caused by CWE-506?

How do you prevent CWE-506?

How is CWE-506 detected?

What are the consequences of CWE-506?

Is CWE-506 actively exploited?

References

Stay ahead of CWE-506

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

How to prevent it

How to detect it

Manual Static Analysis - Binary or Bytecode

Dynamic Analysis with Manual Results Interpretation

Manual Static Analysis - Source Code

Automated Static Analysis

Code examples

Illustrative examples

Related weaknesses

Parent

Child

Terminology & mappings

Mapped taxonomies

Attack patterns

Frequently asked questions

What is CWE-506?

What CVEs are caused by CWE-506?

How do you prevent CWE-506?

How is CWE-506 detected?

What are the consequences of CWE-506?

Is CWE-506 actively exploited?

References

Stay ahead of CWE-506