SFP Secondary Cluster: Information Loss
A category in the Common Weakness Enumeration published by The MITRE Corporation.
Categories in the Common Weakness Enumeration (CWE) group entries based on some common characteristic or attribute.
This category identifies Software Fault Patterns (SFPs) within the Information Loss cluster.
The software does not record, or improperly records, security-relevant information that leads to an incorrect decision or hampers later analysis.
The software records security-relevant information according to an alternate name of the affected entity, instead of the canonical name.
The application does not record or display information that would be important for identifying the source or nature of an attack, or determining if an action is safe.
The application truncates the display, recording, or processing of security-relevant information in a way that can obscure the source or nature of an attack.
CWE identifiers in this view are associated with clusters of Software Fault Patterns (SFPs).