CVEbaza.plCWE DictionaryCWE-563
Common Weakness Enumeration

CWE-563

Assignment to Variable without Use

Category: BaseCVE: 2
Description

The variable's value is assigned but never used, making it a dead store.

Extended Description

After the assignment, the variable is either assigned another value or goes out of scope. It is likely that the variable is simply vestigial, but it is also possible that the unused variable points out a bug.

CVE vulnerabilities with CWE-563 (2)
7.7
CVSS
HIGH
CVE-2021-1620

A vulnerability in the Internet Key Exchange Version 2 (IKEv2) support for the AutoReconnect feature of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to exhaust the free IP addresses from the assigned local pool. This vulnerability occurs because the code does not release the allocated IP address under certain failure conditions. An attacker could exploit this vulnerability by trying to connect to the device with a non-AnyConnect client. A successful exploit could allow the attacker to exhaust the IP addresses from the assigned local pool, which prevents users from logging in and leads to a denial of service (DoS) condition.

pub. 2021-09-23
2.9
CVSS
LOW
CVE-2024-30120

HCL DRYiCE Optibot Reset Station is impacted by an Unused Parameter in the web application.

pub. 2024-06-14
Information
ID: CWE-563
Type: Base
Vulnerabilities: 2
MITRE CWE ↗
← CWE Dictionary