Common Weakness Enumeration


International in scope and free for public use, CWE™ provides a unified, measurable set of software weaknesses that will enable more effective discussion, description, selection, and use of software security tools and services that can find these weaknesses in source code.
12
Topics (70)
Replies Last Post Views Sub Forum
CWE for DNS/PTR/etc shenanigans by Kurt Seifried
0
by Kurt Seifried
CWE Research List
Request for comment - homophone attacks by Kurt Seifried
25
by Kurt Seifried-2
CWE Research List
CWE Schema Proposal by Andrew Buttner
1
by Andrew Buttner
CWE Research List
Suggestions for Changes to CWE-581 (UNCLASSIFIED) by Hood, Jonathan W CTR...
5
by Hood, Jonathan W CTR...
CWE Research List
update for https://cwe.mitre.org/data/definitions/67.html by Kurt Seifried
2
by Kurt Seifried
CWE Research List
Request to tidy up CWE-79 / CWE-80 by Kurt Seifried
2
by Harchar, John E [US]...
CWE Research List
Request for comment - oauth related CWEs by Kurt Seifried
0
by Kurt Seifried
CWE Research List
CWE Version 2.11 is Released by Andrew Buttner
0
by Andrew Buttner
CWE Research List
CWE Privacy Policy Change by Andrew Buttner
0
by Andrew Buttner
CWE Research List
test by Robert A. Martin
1
by Charles Parker
CWE Research List
CWE Taxonomy Mappings by Andrew Buttner
0
by Andrew Buttner
CWE Research List
CWE Reuse vs Deprecation by Andrew Buttner
13
by Wheeler, David A
CWE Research List
HTTPS Interception Weakens TLS Security by Jeffrey Walton
1
by Andrew Buttner
CWE Research List
CWE - request for additional weaknesses by Christey, Steven M.
0
by Christey, Steven M.
CWE Research List
CWE Version 2.10 is Released by Andrew Buttner
0
by Andrew Buttner
CWE Research List
Planned Changes to the CWE Development View (CWE-699) by Christey, Steven M.
1
by Christey, Steven M.
CWE Research List
Last call - Planned Changes to the CWE Development View (CWE-699) by Christey, Steven M.
0
by Christey, Steven M.
CWE Research List
Which CWE fields do you find important? by Andrew Buttner
6
by Andrew Buttner
CWE Research List
CWE and CAPEC Support in 2017 by Andrew Buttner
0
by Andrew Buttner
CWE Research List
CWE 2.8 database by andy
6
by andrew murren
CWE Research List
Wording issue in CWE-107 by G. Ann Campbell
0
by G. Ann Campbell
CWE Research List
CWE-788: does the extended description contains a mistake ? by Roberto Martelloni
5
by Christey, Steven M.
CWE Research List
Rationalize CWE-119 (improper buffer bound restriction) and CWE-120 (classic buffer overflow) by Wheeler, David A
4
by Pascal Meunier
CWE Research List
CVE or CWE for using/accepting wrong CA to certify a certificate? by Jeffrey Walton
4
by Jeffrey Walton
CWE Research List
CWE 651 by yossi
0
by yossi
CWE Research List
CWE for overly permissive crossdomain.xml? by Seth Art
5
by Christey, Steven M.
CWE Research List
New CWE listing? by G. Ann Campbell
0
by G. Ann Campbell
CWE Research List
OWASP Top 10 by JA
0
by JA
CWE Research List
Question about CVE description by Piper, Lesley A
1
by Kurt Seifried
CWE Research List
Mailing list unsubscribe messages by Christey, Steven M.
0
by Christey, Steven M.
CWE Research List
CWE-73 should be related to CWE-22 by Dave Ferguson
4
by John Lin
CWE Research List
Incomplete view: OWASP Top Ten 2013 A1 - Injection by Chris Eng
2
by Serafín Raya
CWE Research List
Re: CWE-459 by rcvalle
0
by rcvalle
CWE Research List
Insufficient Comparison (CWE-697) by rcvalle
0
by rcvalle
CWE Research List
Use after free by Steve Grubb
13
by Christina
CWE Research List
12