Base weakness

Incomplete

CWE-910: Use of Expired File Descriptor

Also known as: Stale file descriptor

The product uses or accesses a file descriptor after it has been closed.

Recorded CVEs

With this primary weakness

KEVs

In the CISA KEV catalog

Medium

Likelihood of exploit

Per MITRE

Base

Abstraction

MITRE classification

Overview

After a file descriptor for a particular file or device has been released, it can be reused. The code might not write to the original file, since the reused file descriptor might reference a different file or device.

CWE-910: Use of Expired File Descriptor

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

Applies to

How to detect it

Automated Static Analysis

Terminology & mappings

Alternate terms

Mapped taxonomies

Frequently asked questions

What is CWE-910?

What CVEs are caused by CWE-910?

How is CWE-910 detected?

What are the consequences of CWE-910?

Is CWE-910 actively exploited?

References

Stay ahead of CWE-910

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

Applies to

How to detect it

Automated Static Analysis

Related weaknesses

Parent

Terminology & mappings

Alternate terms

Mapped taxonomies

Frequently asked questions

What is CWE-910?

What CVEs are caused by CWE-910?

How is CWE-910 detected?

What are the consequences of CWE-910?

Is CWE-910 actively exploited?

References

Stay ahead of CWE-910