CWE

Common Weakness Enumeration

A Community-Developed List of Software Weakness Types

CWE/SANS Top 25 Most Dangerous Software Errors
Home > CWE List > CWE- Individual Dictionary Definition (2.11)  
ID

CWE CATEGORY: OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities

Category ID: 937
Status: Incomplete
+ Description

Description Summary

Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
+ Relationships
NatureTypeIDNameView(s) this relationship pertains toView(s)
MemberOfViewView928Weaknesses in OWASP Top Ten (2013)
Weaknesses in OWASP Top Ten (2013) (primary)928
+ Relationship Notes

This is an unusual category. CWE does not cover the limitations of human processes and procedures that cannot be described in terms of a specific technical weakness as resident in the code, architecture, or configuration of the software. Since "known vulnerabilities" can arise from any kind of weakness, it is not possible to map this OWASP category to other CWE entries, since it would effectively require mapping this category to ALL weaknesses.

+ References
OWASP. "Top 10 2013-A9-Using Components with Known Vulnerabilities". <https://www.owasp.org/index.php/Top_10_2013-A9-Using_Components_with_Known_Vulnerabilities>.
+ Content History
Submissions
Submission DateSubmitterOrganizationSource
2013-07-16MITREInternal CWE Team

More information is available — Please select a different filter.
Page Last Updated: May 05, 2017