CWE - Common Weakness Enumeration

CWE List
Full Dictionary View
Development View
Research View
Reports

About
Sources
Process
Documents

Community
Related Activities
Discussion List
Research
CWE/SANS Top 25
CWSS

News
Calendar
Free Newsletter

Compatibility
Program
Requirements
Declarations
Make a Declaration

Contact Us
Search the Site

News

...more

Upcoming Events

Making Security Measurable briefing at DHS/DoD/NIST SwA Forum, November 2-6
Making Security Measurable briefing at Darden School of Business, University of Virginia, November 4
CWE/CAPEC briefing at IDGA Cyber Security for National Defense Summit, Nov 16-18

...more

Status Report

Version 1.6 posted October 29, 2009. Significant changes include: (1) 4 new entries; (2) changes to 177 existing entries, especially descriptions, other notes, and common consequences; (3) promotion of 3 entries to "Usable" status; (4) an updated report on stakeholder field priorities; and (5) an updated Top 25 document.

More Information

cwe@mitre.org

International in scope and free for public use, CWE™ provides a unified, measurable set of software weaknesses that is enabling more effective discussion, description, selection, and use of software security tools and services that can find these weaknesses in source code and operational systems as well as better understanding and management of software weaknesses related to architecture and design.

Page Last Updated: October 29, 2009


	CWE is a Software Assurance strategic initiative sponsored by the National Cyber Security Division of the U.S. Department of Homeland Security. This Web site is hosted by The MITRE Corporation. Copyright 2009, The MITRE Corporation. CWE and the CWE logo are trademarks of The MITRE Corporation. Contact cwe@mitre.org for more information.	Privacy policy Terms of use Contact us