CWE

Common Weakness Enumeration

A Community-Developed List of Software Weakness Types

CWE/SANS Top 25 Most Dangerous Software Errors
Home > CWE List > CWE- Individual Dictionary Definition (3.1)  
ID

CWE CATEGORY: OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities

Category ID: 937
Status: Incomplete
+ Summary
Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
+ Membership
NatureTypeIDName
MemberOfViewView - a subset of CWE entries that provides a way of examining CWE content. The two main view structures are Slices (flat lists) and Graphs (containing relationships between entries).928Weaknesses in OWASP Top Ten (2013)
+ Notes

Relationship

This is an unusual category. CWE does not cover the limitations of human processes and procedures that cannot be described in terms of a specific technical weakness as resident in the code, architecture, or configuration of the software. Since "known vulnerabilities" can arise from any kind of weakness, it is not possible to map this OWASP category to other CWE entries, since it would effectively require mapping this category to ALL weaknesses.
+ References
[REF-936] OWASP. "Top 10 2013-A9-Using Components with Known Vulnerabilities". <https://www.owasp.org/index.php/Top_10_2013-A9-Using_Components_with_Known_Vulnerabilities>.
+ Content History
Submissions
Submission DateSubmitterOrganization
2013-07-16CWE Content TeamMITRE

More information is available — Please select a different filter.
Page Last Updated: March 29, 2018