CWE-704: Incorrect Type Conversion or Cast

CWE-704: Incorrect Type Conversion or Cast | RadicalNotion.AI

Code examples

Illustrative examples from MITRE showing how the weakness appears in code.

In this example, depending on the return value of accecssmainframe(), the variable amount can hold a negative value when it is returned. Because the function is declared to return an unsigned value, amount will be implicitly cast to an unsigned number.

Vulnerable example

unsigned int readdata () {

If the return value of accessmainframe() is -1, then the return value of readdata() will be 4,294,967,295 on a system that uses 32-bit integers.

The following code uses a union to support the representation of different types of messages. It formats messages differently, depending on their type.

Vulnerable example

#define NAME_TYPE 1

CWE-704: Incorrect Type Conversion or Cast

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

Applies to

How to detect it

Fuzzing

Code examples

Illustrative examples

Terminology & mappings

Mapped taxonomies

Frequently asked questions

What is CWE-704?

What CVEs are caused by CWE-704?

How is CWE-704 detected?

What are the consequences of CWE-704?

Is CWE-704 actively exploited?

References

Stay ahead of CWE-704

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

Applies to

How to detect it

Fuzzing

Code examples

Illustrative examples

Related weaknesses

Parent

Child

Terminology & mappings

Mapped taxonomies

Frequently asked questions

What is CWE-704?

What CVEs are caused by CWE-704?

How is CWE-704 detected?

What are the consequences of CWE-704?

Is CWE-704 actively exploited?

References

Stay ahead of CWE-704