CWE Research List

This forum is an archive for the mailing list cwe-research-list@lists.mitre.org (more options) Messages posted here will be sent to this mailing list.

CWE Research - A lightly moderated public forum to discuss CWE definitions, suggest potential definition expansion(s), and/or submit new definitions. General discussion of the vulnerabilities themselves is also welcome.
123
Topics (81)
Replies Last Post Views
CWE 651 by yossi
0
by yossi
CWE for overly permissive crossdomain.xml? by Seth Art
5
by Christey, Steven M.
New CWE listing? by G. Ann Campbell
0
by G. Ann Campbell
OWASP Top 10 by JA
0
by JA
Question about CVE description by Piper, Lesley A
1
by Kurt Seifried
Mailing list unsubscribe messages by Christey, Steven M.
0
by Christey, Steven M.
CWE-73 should be related to CWE-22 by Dave Ferguson
4
by John Lin
Incomplete view: OWASP Top Ten 2013 A1 - Injection by Chris Eng
2
by SerafĂ­n Raya
Re: CWE-459 by rcvalle
0
by rcvalle
Insufficient Comparison (CWE-697) by rcvalle
0
by rcvalle
Use after free by Steve Grubb
13
by Christina
CWE-459 by Steve Grubb
5
by Office of Residentia...
"Common Consequences" element question by Mingyue Zhu
0
by Mingyue Zhu
remove by Morgan Harpenau
0
by Morgan Harpenau
CWE-824 vs CWE-457 by Amy Gale
1
by Steven M. Christey-3
CWE-192 misplaced in Research View by rcvalle
2
by rcvalle
Doesn't the view CWE-699 include CWE-772 ? by Mingyue Zhu
1
by Steven M. Christey-3
Buffer problems fault tree by Steve Grubb
0
by Steve Grubb
Missing CWE category -- Lockup by Jiri Slaby
4
by Jiri Slaby
CWE-170: Improper Null Termination by Koo, Hsiao-Ming (Mic...
0
by Koo, Hsiao-Ming (Mic...
proposed CWE Compatibility and CWE Effectiveness Requirements 1.0 changes by Robert A. Martin
9
by Steven M. Christey-2
proposed CWE Compatibility and CWE Effectiveness Requirements 1.0 changes by Robert A. Martin
0
by Robert A. Martin
CWE/SANS Top 25 List - new for 2010 by Steven M. Christey-2
2
by Bufford, Jill
Question about CWE categorization by lehathanh
0
by lehathanh
CWE Version 1.6 Now Available by Steven M. Christey-2
0
by Steven M. Christey-2
OWASP Hartford: October 2009 by owasp
0
by owasp
A Proposal to Precisely Define Weaknesses by Michael Koo
2
by Pascal Meunier
CWE 1.4 released by Steven M. Christey-2
0
by Steven M. Christey-2
More frequent CWE releases and CWE versioning by Steven M. Christey-2
3
by Steven M. Christey-2
1.0 confusion by Chris Eng
0
by Chris Eng
Release of CWE 1.0 by Steven M. Christey-2
0
by Steven M. Christey-2
CWE 1.0 to be released Tuesday, September 9, 2008 by Steven M. Christey-2
2
by Steven M. Christey-2
Some asking about CWE. by Tadashi Yamagishi
2
by Tadashi Yamagishi
FW: Natural Hierarchy email by Harris, Conor O.
0
by Harris, Conor O.
Identifying Perspective Issues in CWE by Steven M. Christey-2
3
by McGovern, James F (H...
123