A parent class has a virtual destructor method, but the parent has a child class that does not have a virtual destructor.
View on MITREThis issue can prevent the product from running reliably, since the child might not perform essential destruction operations. If the relevant code is reachable by an attacker, then this reliability problem might introduce a vulnerability, such as a memory leak (CWE-401).
No mitigation information available for this CWE.
No detection method information available for this CWE.
No examples or observed CVEs available for this CWE.
No relationship information available for this CWE.
CWE-1045: Parent Class with a Virtual Destructor and a Child Class without a Virtual Destructor is a Common Weakness Enumeration (CWE) entry maintained by MITRE. A parent class has a virtual destructor method, but the parent has a child class that does not have a virtual destructor. This issue can prevent the product from running reliably, since the child might not perform essential destruction operations. If the relevant code is reachable by an attacker, then this reliability problem might introduce a vulnerability, such as a memory leak (CWE-401).
If exploited, CWE-1045 (Parent Class with a Virtual Destructor and a Child Class without a Virtual Destructor) it can compromise Other, leading to outcomes such as Reduce Reliability.
A CWE (Common Weakness Enumeration) like CWE-1045 describes a category of software weakness — the underlying flaw type. A CVE (Common Vulnerabilities and Exposures) identifies a specific, real-world vulnerability in a particular product. In short, a CWE is the kind of mistake, and a CVE is an instance of that mistake being found in software.