CWE-1188: Insecure Default Initialization of Resource

"The product initializes or sets a resource with a default that is intended to be changed by the administrator, but the default is not secure." - Entry from the Common Weakness Enumeration