All CWEs
CWE-910
Use of Expired File Descriptor
BaseIncompleteSimple1 CVE
The product uses or accesses a file descriptor after it has been closed.
Extended description
After a file descriptor for a particular file or device has been released, it can be reused. The code might not write to the original file, since the reused file descriptor might reference a different file or device.
Common consequences2
- ConfidentialityRead Files or Directories
The program could read data from the wrong file.
- AvailabilityDoS: Crash, Exit, or Restart
Accessing a file descriptor that has been closed can cause a crash.
Relationships1
- ChildOfCWE-672
CVEs referencing this CWE1
| CVE | Description | Severity | EPSS | Flags | Modified |
|---|---|---|---|---|---|
| CVE-2020-13530 | A denial-of-service vulnerability exists in the Ethernet/IP server functionality of the EIP Stack Group OpENer 2.3 and development commit 8c73bf3. A large number of network requests in a small span of time can cause the running program to stop. An attacker can send a sequence of requests to trigger this vulnerability. | HIGH7.5 | 2.06%p79 | 2024-11-21 |