CWE-14
Compiler Removal of Code to Clear Buffers
Sensitive memory is cleared according to the source code, but compiler optimizations leave the memory untouched when it is not read from again, aka dead store removal.
Official CWE-14 definition at MITREImpactr finds and proves weaknesses like CWE-14 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist