Common Weakness Enumeration (CWE)

1,006 CWEs

CWENameCVEsAbstractionLikelihoodDetails
CWE-774Allocation of File Descriptors or Handles Without Limits or Throttling4VariantLow
CWE-216DEPRECATED: Containment Errors (Container Errors)4Class-
CWE-467Use of sizeof() on a Pointer Type4VariantHigh
CWE-40Path Traversal: '\\UNC\share\name\' (Windows UNC Share)4Variant-
CWE-235Improper Handling of Extra Parameters4Variant-
CWE-1116Inaccurate Comments4Base-
CWE-237Improper Handling of Structural Elements4Base-
CWE-550Server-generated Error Message Containing Sensitive Information4Variant-
CWE-1234Hardware Internal or Debug Modes Allow Override of Locks4Base-
CWE-1357Reliance on Insufficiently Trustworthy Component4Class-
CWE-1068Inconsistency Between Implementation and Documented Design4Base-
CWE-1389Incorrect Parsing of Numbers with Different Radices4Base-
CWE-166Improper Handling of Missing Special Element4Base-
CWE-491Public cloneable() Method Without Final ('Object Hijack')4Variant-
CWE-1256Improper Restriction of Software Interfaces to Hardware Features4Base-
CWE-1100Insufficient Isolation of System-Dependent Functions4Base-
CWE-454External Initialization of Trusted Variables or Data Stores4Base-
CWE-1032CWE-10324--
CWE-623Unsafe ActiveX Control Marked Safe For Scripting3Variant-
CWE-1187DEPRECATED: Use of Uninitialized Resource3Base-
CWE-756Missing Custom Error Page3Base-
CWE-1257Improper Access Control Applied to Mirrored or Aliased Memory Regions3Base-
CWE-1049Excessive Data Query Operations in a Large Data Table3Base-
CWE-435Improper Interaction Between Multiple Correctly-Behaving Entities3Pillar-
CWE-182Collapse of Data into Unsafe Value3Base-