CWE

Common Weakness Enumeration

A Community-Developed List of Software Weakness Types

CWE/SANS Top 25 Most Dangerous Software Errors
Home > CWE List > CWE- Individual Dictionary Definition (2.10)  
ID

CWE CATEGORY: SFP Secondary Cluster: Tainted Input to Environment

Category ID: 991
Status: Incomplete
+ Description

Description Summary

This category identifies Software Fault Patterns (SFPs) within the Tainted Input to Environment cluster.
+ Relationships
NatureTypeIDNameView(s) this relationship pertains toView(s)
ChildOfCategoryCategory896SFP Primary Cluster: Tainted Input
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness ClassWeakness Class94Improper Control of Generation of Code ('Code Injection')
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness BaseWeakness Base114Process Control
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness BaseWeakness Base427Uncontrolled Search Path Element
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness BaseWeakness Base470Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness BaseWeakness Base471Modification of Assumed-Immutable Data (MAID)
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness BaseWeakness Base472External Control of Assumed-Immutable Web Parameter
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness VariantWeakness Variant473PHP External Variable Modification
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness BaseWeakness Base494Download of Code Without Integrity Check
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness VariantWeakness Variant545Use of Dynamic Class Loading
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness VariantWeakness Variant622Improper Validation of Function Hook Arguments
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness ClassWeakness Class673External Influence of Sphere Definition
Software Fault Pattern (SFP) Clusters (primary)888
+ Content History
Submissions
Submission DateSubmitterOrganizationSource
2014-07-29Internal CWE Team

More information is available — Please select a different filter.
Page Last Updated: January 11, 2017