CWE•Base•Draft•20 recent CVEs
CWE-772Missing Release of Resource after Effective Lifetime
Description
The product does not release a resource after its effective lifetime has ended, i.e., after the resource is no longer needed.
Common consequences
- Availability→DoS: Resource Consumption (Other),DoS: Resource Consumption (Memory),DoS: Resource Consumption (CPU)An attacker that can influence the allocation of resources that are not properly released could deplete the available resource pool and prevent all other processes from accessing the same type of resource. Frequently-affected resources incl
Potential mitigations
- Requirements[object Object]
- ImplementationIt is good practice to be responsible for freeing all resources you allocate and to be consistent with how and where you free resources in a function. If you allocate resources that you intend to free upon completion of the function, you must be sure to free the resources at all exit points for that function including error conditions.
- Operation,Architecture and Design[object Object]
Related CWEs
Recent CVEs classified under this CWE
CVE-2026-452872026-06-04CVE-2026-91566.52026-05-27CVE-2026-425777.52026-05-13CVE-2026-394557.52026-05-13CVE-2026-352272026-05-12CVE-2026-433145.52026-05-08CVE-2026-432575.52026-05-06CVE-2026-430545.52026-05-01CVE-2026-31047.52026-03-25CVE-2026-232995.52026-03-25CVE-2026-200828.62026-03-04CVE-2018-140737.52018-07-15CVE-2018-140727.52018-07-15CVE-2017-73967.52017-04-01CVE-2017-73927.52017-04-01CVE-2017-55077.52017-03-24CVE-2017-64146.52017-03-15CVE-2017-63866.52017-03-15CVE-2017-63176.52017-03-15CVE-2017-59936.52017-03-15