CWE

Common Weakness Enumeration

A Community-Developed Dictionary of Software Weakness Types

CWE/SANS Top 25 Most Dangerous Software Errors Common Weakness Scoring System
Common Weakness Risk Analysis Framework
Home > CWE List > CWE- Individual Dictionary Definition (2.6)  

Presentation Filter:

CWE-2: Environment

 
Environment
Category ID: 2 (Category)Status: Draft
+ Description

Description Summary

Weaknesses in this category are typically introduced during unexpected environmental conditions.
+ Relationships
NatureTypeIDNameView(s) this relationship pertains toView(s)
ChildOfCategoryCategory1Location
Development Concepts (primary)699
ChildOfCategoryCategory933OWASP Top Ten 2013 Category A5 - Security Misconfiguration
Weaknesses in OWASP Top Ten (2013) (primary)928
ParentOfCategoryCategory3Technology-specific Environment Issues
Development Concepts (primary)699
ParentOfWeakness VariantWeakness Variant5J2EE Misconfiguration: Data Transmission Without Encryption
Seven Pernicious Kingdoms (primary)700
ParentOfWeakness VariantWeakness Variant6J2EE Misconfiguration: Insufficient Session-ID Length
Seven Pernicious Kingdoms (primary)700
ParentOfWeakness VariantWeakness Variant7J2EE Misconfiguration: Missing Custom Error Page
Seven Pernicious Kingdoms (primary)700
ParentOfWeakness VariantWeakness Variant8J2EE Misconfiguration: Entity Bean Declared Remote
Seven Pernicious Kingdoms (primary)700
ParentOfWeakness VariantWeakness Variant9J2EE Misconfiguration: Weak Access Permissions for EJB Methods
Seven Pernicious Kingdoms (primary)700
ParentOfWeakness VariantWeakness Variant11ASP.NET Misconfiguration: Creating Debug Binary
Seven Pernicious Kingdoms (primary)700
ParentOfWeakness VariantWeakness Variant12ASP.NET Misconfiguration: Missing Custom Error Page
Seven Pernicious Kingdoms (primary)700
ParentOfWeakness VariantWeakness Variant13ASP.NET Misconfiguration: Password in Configuration File
Seven Pernicious Kingdoms (primary)700
ParentOfWeakness BaseWeakness Base14Compiler Removal of Code to Clear Buffers
Development Concepts699
Seven Pernicious Kingdoms (primary)700
ParentOfWeakness BaseWeakness Base15External Control of System or Configuration Setting
Development Concepts (primary)699
ParentOfWeakness ClassWeakness Class435Interaction Error
Development Concepts (primary)699
ParentOfWeakness BaseWeakness Base552Files or Directories Accessible to External Parties
Development Concepts (primary)699
ParentOfWeakness VariantWeakness Variant650Trusting HTTP Permission Methods on the Server Side
Development Concepts (primary)699
MemberOfViewView700Seven Pernicious Kingdoms
Seven Pernicious Kingdoms (primary)700
+ Content History
Modifications
Modification DateModifierOrganizationSource
2008-09-08CWE Content TeamMITREInternal
updated Relationships
2013-07-17CWE Content TeamMITREInternal
updated Relationships
Page Last Updated: February 18, 2014