Common Weakness Enumeration (CWE)

1,006 CWEs

CWENameCVEsAbstractionLikelihoodDetails
CWE-135Incorrect Calculation of Multi-Byte String Length2Base-
CWE-396Declaration of Catch for Generic Exception2Base-
CWE-1091Use of Object without Invoking Destructor Method2Base-
CWE-529Exposure of Access Control List Files to an Unauthorized Control Sphere1Variant-
CWE-485CWE-4851--
CWE-895CWE-8951--
CWE-39Path Traversal: 'C:dirname'1Variant-
CWE-509Replicating Malicious Code (Virus or Worm)1Base-
CWE-6J2EE Misconfiguration: Insufficient Session-ID Length1Variant-
CWE-621Variable Extraction Error1Variant-
CWE-301Reflection Attack in an Authentication Protocol1BaseMedium
CWE-714CWE-7141--
CWE-952CWE-9521--
CWE-12ASP.NET Misconfiguration: Missing Custom Error Page1Variant-
CWE-1056Invokable Control Element with Variadic Parameters1Base-
CWE-507Trojan Horse1Base-
CWE-587Assignment of a Fixed Address to a Pointer1Variant-
CWE-1278Missing Protection Against Hardware Reverse Engineering Using Integrated Circuit (IC) Imaging Techniques1Base-
CWE-1190DMA Device Enabled Too Early in Boot Phase1Base-
CWE-1118Insufficient Documentation of Error Handling Techniques1Base-
CWE-1291Public Key Re-Use for Signing both Debug and Production Code1Base-
CWE-571Expression is Always True1Base-
CWE-1352CWE-13521--
CWE-1218CWE-12181--
CWE-1083Data Access from Outside Expected Data Manager Component1Base-