Common Weakness Enumeration


International in scope and free for public use, <a href="http://">CWE™ provides a unified, measurable set of software weaknesses that will enable more effective discussion, description, selection, and use of software security tools and services that can find these weaknesses in source code.
123
Topics (89)
Replies Last Post Views Sub Forum
CWE for backdoors by Kurt Seifried
7
by Christey, Steven M.
CWE Research List
Request for CWE: Improper Licensing (UNCLASSIFIED) by Hood, Jonathan W CTR...
10
by Andrew Buttner
CWE Research List
New CWE Research List Address by Andrew Buttner
0
by Andrew Buttner
CWE Research List
CWE Version 3.1 is Released by Andrew Buttner
0
by Andrew Buttner
CWE Research List
zero-width chars as a related CWE to CWE-1007 (Homoglyph attacks) by Kurt Seifried
0
by Kurt Seifried
CWE Research List
CWE-125 ("Out-of-bounds Read") extended description by Will Klieber
3
by Christey, Steven M.
CWE Research List
CWE proposal for "Improper reliance on certificate pinning" by Kurt Seifried
4
by Christey, Steven M.
CWE Research List
Re: Proposed new CWE: Machine learning classifier vulnerable to adversarial inputs (adversarial machine learning) by Wheeler, David A
9
by Christey, Steven M.
CWE Research List
Meltdown and Spectre by Andrew Buttner
0
by Andrew Buttner
CWE Research List
Re: [Non-DoD Source] RE: Proposed new CWE: Machine learning classifier vulnerable to adversarial inputs (adversarial machine learning) (UNCLASSIFIED) by Hood, Jonathan W CTR...
0
by Hood, Jonathan W CTR...
CWE Research List
CWE Relationships - Better Display by Andrew Buttner
1
by Arthur Hicken
CWE Research List
CWE Version 3.0 is Released by Andrew Buttner
0
by Andrew Buttner
CWE Research List
New weakness: untrusted HTML targets. HTML target= and window.open() enables easy reverse tabnabbing by Wheeler, David A
1
by Andrew Buttner
CWE Research List
Request for comment - homophone attacks by Kurt Seifried
32
by Jeffrey Walton
CWE Research List
Re: CWE 3.0 - quick progress update - should include CQE by Joe Jarzombek
1
by Walter Houser
CWE Research List
CWE discussion/request for DNS related issue by Kurt Seifried
8
by Shifflett, David M [...
CWE Research List
CWE 3.0 - quick progress update by Christey, Steven M.
0
by Christey, Steven M.
CWE Research List
Question/Discussion about https://cwe.mitre.org/data/definitions/308.html by Kurt Seifried
1
by Kurt Seifried
CWE Research List
Question/discussion about CWE-830: Inclusion of Web Functionality from an Untrusted Source by Kurt Seifried
0
by Kurt Seifried
CWE Research List
Some more common programmer errors by Kurt Seifried
0
by Kurt Seifried
CWE Research List
CWE for DNS/PTR/etc shenanigans by Kurt Seifried
0
by Kurt Seifried
CWE Research List
CWE Schema Proposal by Andrew Buttner
1
by Andrew Buttner
CWE Research List
Suggestions for Changes to CWE-581 (UNCLASSIFIED) by Hood, Jonathan W CTR...
5
by Hood, Jonathan W CTR...
CWE Research List
update for https://cwe.mitre.org/data/definitions/67.html by Kurt Seifried
2
by Kurt Seifried
CWE Research List
Request to tidy up CWE-79 / CWE-80 by Kurt Seifried
2
by Harchar, John E [US]...
CWE Research List
Request for comment - oauth related CWEs by Kurt Seifried
0
by Kurt Seifried
CWE Research List
CWE Version 2.11 is Released by Andrew Buttner
0
by Andrew Buttner
CWE Research List
CWE Privacy Policy Change by Andrew Buttner
0
by Andrew Buttner
CWE Research List
test by Robert A. Martin
1
by Charles Parker
CWE Research List
CWE Taxonomy Mappings by Andrew Buttner
0
by Andrew Buttner
CWE Research List
CWE Reuse vs Deprecation by Andrew Buttner
13
by Wheeler, David A
CWE Research List
HTTPS Interception Weakens TLS Security by Jeffrey Walton
1
by Andrew Buttner
CWE Research List
CWE - request for additional weaknesses by Christey, Steven M.
0
by Christey, Steven M.
CWE Research List
CWE Version 2.10 is Released by Andrew Buttner
0
by Andrew Buttner
CWE Research List
Planned Changes to the CWE Development View (CWE-699) by Christey, Steven M.
1
by Christey, Steven M.
CWE Research List
123