CWE
Home > CWE List > CWE- Individual Dictionary Definition (1.1)  
Search by ID:

CWE-630: Weaknesses Examined by SAMATE

Individual Definition in a New Window
Weaknesses Examined by SAMATE
Status: Draft
View ID: 630 (View: Explicit Slice)
Objective

CWE nodes in this view (slice) are being focused on by SAMATE.

View Data
CWEs in this viewTotal CWEs
Total21out of751
Views0out of21
Categories1out of101
Weaknesses20out of617
Compound_Elements0out of12
References
Relationships
NatureTypeIDNameView(s) this relationship pertains toView(s)
HasMemberCategoryCategory251Often Misused: String Management
Weaknesses Examined by SAMATE (primary)630
HasMemberWeakness VariantWeakness VariantWeakness Variant121Stack-based Buffer Overflow
Weaknesses Examined by SAMATE (primary)630
HasMemberWeakness VariantWeakness VariantWeakness Variant122Heap-based Buffer Overflow
Weaknesses Examined by SAMATE (primary)630
HasMemberWeakness BaseWeakness BaseWeakness Base134Uncontrolled Format String
Weaknesses Examined by SAMATE (primary)630
HasMemberWeakness BaseWeakness BaseWeakness Base170Improper Null Termination
Weaknesses Examined by SAMATE (primary)630
HasMemberWeakness VariantWeakness VariantWeakness Variant244Failure to Clear Heap Memory Before Release (aka 'Heap Inspection')
Weaknesses Examined by SAMATE (primary)630
HasMemberWeakness BaseWeakness BaseWeakness Base259Hard-Coded Password
Weaknesses Examined by SAMATE (primary)630
HasMemberWeakness BaseWeakness BaseWeakness Base367Time-of-check Time-of-use (TOCTOU) Race Condition
Weaknesses Examined by SAMATE (primary)630
HasMemberWeakness BaseWeakness BaseWeakness Base391Unchecked Error Condition
Weaknesses Examined by SAMATE (primary)630
HasMemberWeakness BaseWeakness BaseWeakness Base401Failure to Release Memory Before Removing Last Reference (aka 'Memory Leak')
Weaknesses Examined by SAMATE (primary)630
HasMemberWeakness BaseWeakness BaseWeakness Base412Unrestricted Lock on Critical Resource
Weaknesses Examined by SAMATE (primary)630
HasMemberWeakness VariantWeakness VariantWeakness Variant415Double Free
Weaknesses Examined by SAMATE (primary)630
HasMemberWeakness BaseWeakness BaseWeakness Base416Use After Free
Weaknesses Examined by SAMATE (primary)630
HasMemberWeakness VariantWeakness VariantWeakness Variant457Use of Uninitialized Variable
Weaknesses Examined by SAMATE (primary)630
HasMemberWeakness BaseWeakness BaseWeakness Base468Incorrect Pointer Scaling
Weaknesses Examined by SAMATE (primary)630
HasMemberWeakness BaseWeakness BaseWeakness Base476NULL Pointer Dereference
Weaknesses Examined by SAMATE (primary)630
HasMemberWeakness BaseWeakness BaseWeakness Base489Leftover Debug Code
Weaknesses Examined by SAMATE (primary)630
HasMemberWeakness BaseWeakness BaseWeakness Base78Failure to Sanitize Data into an OS Command (aka 'OS Command Injection')
Weaknesses Examined by SAMATE (primary)630
HasMemberWeakness VariantWeakness VariantWeakness Variant80Failure to Sanitize Script-Related HTML Tags in a Web Page (Basic XSS)
Weaknesses Examined by SAMATE (primary)630
HasMemberWeakness BaseWeakness BaseWeakness Base89Failure to Sanitize Data within SQL Queries (aka 'SQL Injection')
Weaknesses Examined by SAMATE (primary)630
HasMemberWeakness BaseWeakness BaseWeakness Base99Insufficient Control of Resource Identifiers (aka 'Resource Injection')
Weaknesses Examined by SAMATE (primary)630
Content History
Modifications
CWE Content Team. MITRE. 2008-09-08. (Internal)
updated Relationships, References, View_Structure
Back to top
Page Last Updated: November 24, 2008
 

CWE is a Software Assurance strategic initiative sponsored by the National Cyber Security Division of the U.S. Department of Homeland Security.

This Web site is hosted by The MITRE Corporation.
Copyright 2008, The MITRE Corporation. CWE and the CWE logo are trademarks of The MITRE Corporation.

Contact cwe@mitre.org for more information.
Privacy policy
Terms of use
Contact us