logo

CWE

Select a Weakness to see all CVEs that are vulnerable to it.

Powered by CTI Butler

IDObject NameStix Type
knowledgebase object iconCWE-520.NET Misconfiguration: Use of Impersonationweakness
knowledgebase object iconCWE-36Absolute Path Traversalweakness
knowledgebase object iconCWE-349Acceptance of Extraneous Untrusted Data With Trusted Dataweakness
knowledgebase object iconCWE-1280Access Control Check Implemented After Asset is Accessedweakness
knowledgebase object iconCWE-788Access of Memory Location After End of Bufferweakness
knowledgebase object iconCWE-786Access of Memory Location Before Start of Bufferweakness
knowledgebase object iconCWE-843Access of Resource Using Incompatible Type ('Type Confusion')weakness
knowledgebase object iconCWE-824Access of Uninitialized Pointerweakness
knowledgebase object iconCWE-767Access to Critical Private Variable via Public Methodweakness
knowledgebase object iconCWE-489Active Debug Codeweakness
knowledgebase object iconCWE-464Addition of Data Structure Sentinelweakness
knowledgebase object iconCWE-774Allocation of File Descriptors or Handles Without Limits or Throttlingweakness
knowledgebase object iconCWE-770Allocation of Resources Without Limits or Throttlingweakness
knowledgebase object iconCWE-670Always-Incorrect Control Flow Implementationweakness
knowledgebase object iconCWE-1249Application-Level Admin Tool with Inconsistent View of Underlying Operating Systemweakness
knowledgebase object iconCWE-1044Architecture with Number of Horizontal Layers Outside of Expected Rangeweakness
knowledgebase object iconCWE-582Array Declared Public, Final, and Staticweakness
knowledgebase object iconCWE-11ASP.NET Misconfiguration: Creating Debug Binaryweakness
knowledgebase object iconCWE-1174ASP.NET Misconfiguration: Improper Model Validationweakness
knowledgebase object iconCWE-12ASP.NET Misconfiguration: Missing Custom Error Pageweakness
knowledgebase object iconCWE-554ASP.NET Misconfiguration: Not Using Input Validation Frameworkweakness
knowledgebase object iconCWE-13ASP.NET Misconfiguration: Password in Configuration Fileweakness
knowledgebase object iconCWE-556ASP.NET Misconfiguration: Use of Identity Impersonationweakness
knowledgebase object iconCWE-481Assigning instead of Comparingweakness
knowledgebase object iconCWE-587Assignment of a Fixed Address to a Pointerweakness
knowledgebase object iconCWE-563Assignment to Variable without Useweakness
knowledgebase object iconCWE-1282Assumed-Immutable Data is Stored in Writable Memoryweakness
knowledgebase object iconCWE-405Asymmetric Resource Consumption (Amplification)weakness
knowledgebase object iconCWE-588Attempt to Access Child of a Non-structure Pointerweakness
knowledgebase object iconCWE-289Authentication Bypass by Alternate Nameweakness
knowledgebase object iconCWE-302Authentication Bypass by Assumed-Immutable Dataweakness
knowledgebase object iconCWE-294Authentication Bypass by Capture-replayweakness
knowledgebase object iconCWE-305Authentication Bypass by Primary Weaknessweakness
knowledgebase object iconCWE-290Authentication Bypass by Spoofingweakness
knowledgebase object iconCWE-288Authentication Bypass Using an Alternate Path or Channelweakness
knowledgebase object iconCWE-593Authentication Bypass: OpenSSL CTX Object Modified after SSL Objects are Createdweakness
knowledgebase object iconCWE-639Authorization Bypass Through User-Controlled Keyweakness
knowledgebase object iconCWE-566Authorization Bypass Through User-Controlled SQL Primary Keyweakness
knowledgebase object iconCWE-439Behavioral Change in New Version or Environmentweakness
knowledgebase object iconCWE-1327Binding to an Unrestricted IP Addressweakness
knowledgebase object iconCWE-806Buffer Access Using Size of Source Bufferweakness
knowledgebase object iconCWE-805Buffer Access with Incorrect Length Valueweakness
knowledgebase object iconCWE-120Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')weakness
knowledgebase object iconCWE-126Buffer Over-readweakness
knowledgebase object iconCWE-127Buffer Under-readweakness
knowledgebase object iconCWE-124Buffer Underwrite ('Buffer Underflow')weakness
knowledgebase object iconCWE-589Call to Non-ubiquitous APIweakness
knowledgebase object iconCWE-572Call to Thread run() instead of start()weakness
knowledgebase object iconCWE-1117Callable with Insufficient Behavioral Summaryweakness
knowledgebase object iconCWE-300Channel Accessible by Non-Endpointweakness

1–50 of 969