CWE-509 (具传播性的恶意代码(病毒或蠕虫)) — Vulnerability Class 1

CWE-509 represents a critical security weakness where software contains code designed to autonomously replicate and propagate malicious payloads to other systems after initial compromise. This vulnerability is typically exploited by attackers who inject or trigger self-replicating modules, such as viruses or worms, allowing them to spread laterally across networks and infect additional endpoints without further user interaction. To mitigate this risk, developers must implement strict input validation and sandboxing techniques to isolate untrusted code execution environments. Additionally, employing robust access controls and regular security audits helps prevent the introduction of unauthorized replication logic. By ensuring that software components cannot autonomously modify or spread beyond their intended scope, organizations can significantly reduce the attack surface and prevent the cascading failures associated with self-propagating malware.