Base weakness

Draft

CWE-617: Reachable Assertion

Also known as: assertion failure

The product contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary.

331

Recorded CVEs

With this primary weakness

KEVs

In the CISA KEV catalog

Not rated

Likelihood of exploit

Per MITRE

Base

Abstraction

MITRE classification

Overview

While assertion is good for catching logic errors and reducing the chances of reaching more serious vulnerability conditions, it can still lead to a denial of service. For example, if a server handles multiple simultaneous connections, and an assert() occurs in one single connection that causes all other connections to be dropped, this is a reachable assertion that leads to a denial of service.

CWE-617: Reachable Assertion

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

Applies to

How to prevent it

How to detect it

Automated Static Analysis

Code examples

Illustrative examples

Terminology & mappings

Alternate terms

Mapped taxonomies

Frequently asked questions

What is CWE-617?

What CVEs are caused by CWE-617?

How do you prevent CWE-617?

How is CWE-617 detected?

What are the consequences of CWE-617?

Is CWE-617 actively exploited?

References

Stay ahead of CWE-617

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

Applies to

How to prevent it

How to detect it

Automated Static Analysis

Code examples

Illustrative examples

Related weaknesses

Parent

Related

Terminology & mappings

Alternate terms

Mapped taxonomies

Frequently asked questions

What is CWE-617?

What CVEs are caused by CWE-617?

How do you prevent CWE-617?

How is CWE-617 detected?

What are the consequences of CWE-617?

Is CWE-617 actively exploited?

References

Stay ahead of CWE-617