CWE - CWE List (Draft 9)

Home > CWE List (Draft 9)

CWE List
Full Dictionary View
Classification Tree
Reports

About
Sources
Process
Documents

Community
Related Activities
Discussion List
Research

News
Calendar
Free Newsletter

Compatibility
Program
Requirements
Declarations
Make a Declaration

Contact Us
Search the Site

Section Contents
CWE List
Full Dictionary View
Classification Tree
Reports
Other Items of Interest
Sources

CWE List (Draft 9)

CWE List (Draft 9)

Comprehensive Views | Graphs | Explicit Slices | Implicit Slices

The Common Weakness Enumeration (CWE™), currently in a very preliminary form, is a list of software weaknesses. Creating the list is a community initiative. Together, these organizations and any others that wish to join the effort, are creating specific and succinct definitions for each of the elements in the CWE List. By leveraging the widest possible group of interests and talents we hope to ensure that the CWE elements are adequately described and differentiated. The next steps are to adequately capture the specific effects, behaviors, exploit mechanisms, and implementation details in the CWE dictionary as well as to review and revise the presentation approaches that will best suit this information.

Comprehensive Views

CWE XML Draft 9 (2020 KB)	XSD schema (59 KB)
CWE Comprehensive Dictionary	Natural Hierarchy
1-Page Graphical PDF	(149 KB)

Graphs

(1000)	Natural Hierarchy	Graph
(631)	Resource-specific Weaknesses	Graph

Explicit Slices

(604)	Deprecated	List	Slice	XML
(629)	Weaknesses in OWASP Top Ten	List	Slice	XML
(630)	Weaknesses Examined by SAMATE	List	Slice	XML
(635)	Weaknesses Used by NVD	List	Slice	XML

Implicit Slices

(2000)	Comprehensive CWE Dictionary	List	Slice	XML
(658)	Weaknesses found in the C Language	List	Slice	XML
(659)	Weaknesses found in the C++ Language	List	Slice	XML
(660)	Weaknesses found in the Java Language	List	Slice	XML
(661)	Weaknesses found in the PHP Language	List	Slice	XML
(677)	Weakness Base Elements	List	Slice	XML
(678)	Composites	List	Slice	XML
(679)	Chain Elements	List	Slice	XML

Please contact cwe@mitre.org with suggestions for additional views.

Page Last Updated: April 11, 2008


	CWE is sponsored by the National Cyber Security Division of the U.S. Department of Homeland Security. This Web site is hosted by The MITRE Corporation. Copyright 2008, The MITRE Corporation. CWE and the CWE logo are trademarks of The MITRE Corporation. Contact cwe@mitre.org for more information.	Privacy policy Terms of use Contact us