CWE-572: Call to Thread run() instead of start()

VariantDraft

The product calls a thread's run() method instead of calling start(), which causes the code to run in the thread of the caller instead of the callee.

View on MITRE

Back to CWE Lookup

Extended Description

In most cases a direct call to a Thread object's run() method is a bug. The programmer intended to begin a new thread of control, but accidentally called run() instead of start(), so the run() method will execute in the caller's thread of control.

Technical Details

Structure: Simple

Applicable To

Languages

Java

Platforms

Learn More

Find Related CVEs

Search for vulnerabilities that exploit CWE-572

CVE vs CWE: What's the Difference?

Understanding vulnerabilities vs weaknesses

Understanding CVSS Scoring

How vulnerability severity is measured

View Full MITRE Entry

Complete technical details and references