CWE-1086: Class with Excessive Number of Child Classes
ID
CWE-1086
Abstraction
Base
Structure
Simple
Status
Incomplete
A class contains an unnecessarily large number of
children.
This issue makes it more difficult to understand and maintain the software, which indirectly affects security by making it more difficult or time-consuming to find and/or fix vulnerabilities. It also might make it easier to introduce vulnerabilities.
While the interpretation of "large number of children" may vary for each product or developer, CISQ recommends a default maximum of 10 child classes.
Loading...