Common Weakness Enumeration (CWE)

1,006 CWEs

CWENameCVEsAbstractionLikelihoodDetails
CWE-1295Debug Messages Revealing Unnecessary Information21Base-
CWE-1104Use of Unmaintained Third Party Components21Base-
CWE-410Insufficient Resource Pool20Base-
CWE-364Signal Handler Race Condition20BaseMedium
CWE-324Use of a Key Past its Expiration Date20BaseLow
CWE-357Insufficient UI Warning of Dangerous Operations20Base-
CWE-779Logging of Excessive Data20BaseLow
CWE-708Incorrect Ownership Assignment20Base-
CWE-1191On-Chip Debug and Test Interface With Improper Access Control20Base-
CWE-783Operator Precedence Logic Error20BaseLow
CWE-140Improper Neutralization of Delimiters20Base-
CWE-1240Use of a Cryptographic Primitive with a Risky Implementation20Base-
CWE-195Signed to Unsigned Conversion Error19Variant-
CWE-657Violation of Secure Design Principles19Class-
CWE-228Improper Handling of Syntactically Invalid Structure19Class-
CWE-366Race Condition within a Thread19BaseMedium
CWE-590Free of Memory not on the Heap19Variant-
CWE-1327Binding to an Unrestricted IP Address19Base-
CWE-244Improper Clearing of Heap Memory Before Release ('Heap Inspection')19Variant-
CWE-526Cleartext Storage of Sensitive Information in an Environment Variable18Variant-
CWE-390Detection of Error Condition Without Action18BaseMedium
CWE-215Insertion of Sensitive Information Into Debugging Code18Base-
CWE-84Improper Neutralization of Encoded URI Schemes in a Web Page18Variant-
CWE-453Insecure Default Variable Initialization18Variant-
CWE-229Improper Handling of Values18Base-