...
| Include Page | ||||
|---|---|---|---|---|
|
Priority: P2 Level: L3
Referencing uninitialized variables are relatively unlikely to result in an exploitable vulnerability because most compilers provide warnings when an uninitialized variable is referenced and most programmers take these warnings seriously.
Risk Assessment
Rule | Severity | Likelihood | Remediation Cost | Priority | Level |
|---|---|---|---|---|---|
EXP04-A | |||||
Component | Value | ||||
Severity | 1 (low) Likelihood | 1 (unlikely) Remediation cost | 2 (medium) | P2 | L3 |
References
- mercy
- ISO/IEC 9899-1999 Section 6.7.8 Initialization