CWE-478: Missing Default Case in Multiple Condition Expression
Overview
CWE-478 (Missing Default Case in Multiple Condition Expression) documents a weakness type used across vulnerability databases and security assessments. Use the sections below for definition, context, and mapped CVEs.
Security impact
Security impact: Depends on product and context; use CVE records, severity scores, and MITRE guidance to prioritize.
Description
The code does not have a default case in an expression with multiple conditions, such as a switch statement.
Applicable platforms
Kind
Name
Class
Prevalence
OS / CPE
language
C
—
Undetermined
—
language
C++
—
Undetermined
—
language
Java
—
Undetermined
—
language
C#
—
Undetermined
—
language
Python
—
Undetermined
—
language
JavaScript
—
Undetermined
—
Related CVEs in this database
These CVEs are mapped to this weakness in this database and kept for traceability and search.
Free5GC is an open-source Linux Foundation project for 5th generation (5G) mobile core networks. Versions prior to 1.4.2 are vulnerable to procedure panic caused by Nil Pointer Dereference in the /sdm…
Previous names
Failure to Account for Default Case in Switch(2008-04-11)
Failure to Use Default Case in Switch(2009-05-27)
Missing Default Case in Switch Statement(2022-10-13)