A class contains a virtual method, but the method does not have an associated virtual destructor.
View on MITREThis issue can prevent the product from running reliably, e.g. due to undefined behavior. If the relevant code is reachable by an attacker, then this reliability problem might introduce a vulnerability.
No mitigation information available for this CWE.
No detection method information available for this CWE.
No examples or observed CVEs available for this CWE.
No relationship information available for this CWE.
CWE-1087: Class with Virtual Method without a Virtual Destructor is a Common Weakness Enumeration (CWE) entry maintained by MITRE. A class contains a virtual method, but the method does not have an associated virtual destructor. This issue can prevent the product from running reliably, e.g. due to undefined behavior. If the relevant code is reachable by an attacker, then this reliability problem might introduce a vulnerability.
If exploited, CWE-1087 (Class with Virtual Method without a Virtual Destructor) it can compromise Other, leading to outcomes such as Reduce Reliability.
A CWE (Common Weakness Enumeration) like CWE-1087 describes a category of software weakness — the underlying flaw type. A CVE (Common Vulnerabilities and Exposures) identifies a specific, real-world vulnerability in a particular product. In short, a CWE is the kind of mistake, and a CVE is an instance of that mistake being found in software.