CQE-9006: OS Command Execution

 
OS Command Execution
Practice ID: 9006 Maturity: Preliminary
+ Description

Description Summary

OS Command Control

Extended Description

Software unaware of OS command control incurs the risk of unauthorized command execution, possibly used to disable the software, or possibly leading to unauthorized read and modify data access.

+ Relationships
NatureTypeIDNameView(s) this relationship pertains to
View
CanPrecede
Co
Consequence
9030Unauthorized Code Execution
Default Graph (primary)9001
CanPrecede
Co
Consequence
9030Unauthorized Code Execution
Default Graph (primary)9001
CanPrecede
Co
Consequence
9143Failure
Default Graph (primary)9001
CanPrecede
Co
Consequence
9152Unauthorized Access to Sensitive Information
Default Graph (primary)9001
ParentOf
Is
Issue
78OS Command Injection Improper Input Neutralization
Quality Issues Organized by Practices (primary)9002
Page Last Updated or Reviewed: October 01, 2017