CWE-403
Exposure of File Descriptor to Unintended Control Sphere ('File Descriptor Leak')
A process does not close sensitive file descriptors before invoking a child process, which allows the child to perform unauthorized I/O operations using those descriptors.
Official CWE-403 definition at MITREImpactr finds and proves weaknesses like CWE-403 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist