Common Weakness Enumeration (CWE)

1,006 CWEs

CWENameCVEsAbstractionLikelihoodDetails
CWE-319Cleartext Transmission of Sensitive Information894BaseHigh
CWE-835Loop with Unreachable Exit Condition ('Infinite Loop')864Base-
CWE-843Access of Resource Using Incompatible Type ('Type Confusion')821Base-
CWE-415Double Free812VariantHigh
CWE-312Cleartext Storage of Sensitive Information810Base-
CWE-908Use of Uninitialized Resource787BaseMedium
CWE-255CWE-255781--
CWE-617Reachable Assertion774Base-
CWE-203Observable Discrepancy749Base-
CWE-404Improper Resource Shutdown or Release742ClassMedium
CWE-668Exposure of Resource to Wrong Sphere728Class-
CWE-347Improper Verification of Cryptographic Signature719Base-
CWE-667Improper Locking710Class-
CWE-327Use of a Broken or Risky Cryptographic Algorithm682ClassHigh
CWE-367Time-of-check Time-of-use (TOCTOU) Race Condition682BaseMedium
CWE-426Untrusted Search Path651BaseHigh
CWE-345Insufficient Verification of Data Authenticity624Class-
CWE-290Authentication Bypass by Spoofing618Base-
CWE-693Protection Mechanism Failure608Pillar-
CWE-346Origin Validation Error607Class-
CWE-307Improper Restriction of Excessive Authentication Attempts602Base-
CWE-288Authentication Bypass Using an Alternate Path or Channel600Base-
CWE-754Improper Check for Unusual or Exceptional Conditions599ClassMedium
CWE-129Improper Validation of Array Index598VariantHigh
CWE-755Improper Handling of Exceptional Conditions577ClassMedium