Use of Inherently Dangerous Function (4.12)
| Property | |
|---|---|
| Language |  |
| Severity |  |
| CWE | CWE-242: Use of Inherently Dangerous Function (4.12) |
| Confidence Level | Medium |
| Impact Level | Medium |
| Likelihood Level | Medium |
Description#
Using OCaml’s ‘unsafe_’ functions bypasses important safety checks like array bounds and type validation, which can lead to memory errors or unexpected behavior. These functions should only be used if you are certain that inputs are valid and safe.
Impact#
Exploiting unsafe operations can cause crashes, data corruption, or expose sensitive information by reading or writing outside intended memory areas. Attackers could leverage these weaknesses to compromise application integrity or gain unauthorized access to data.