CWE-1266
Improper Scrubbing of Sensitive Data from Decommissioned Device
The product does not properly provide a capability for the product administrator to remove sensitive data at the time the product is decommissioned. A scrubbing capability could be missing, insufficient, or incorrect.
Official CWE-1266 definition at MITREImpactr finds and proves weaknesses like CWE-1266 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist