CWE

Common Weakness Enumeration

A community-developed list of SW & HW weaknesses that can become vulnerabilities
New to CWE? click here!
CWE Most Important Hardware Weaknesses
CWE Top 25 Most Dangerous Weaknesses
Home > CWE List > Reports > Differences between Version 3.4 and Version 3.4.1  
ID

Differences between Version 3.4 and Version 3.4.1

Summary
Summary
Total weaknesses/chains/composites (Version 3.4.1) 808
Total weaknesses/chains/composites (Version 3.4) 808
Total new 0
Total deprecated 0
Total with major changes 6
Total with only minor changes
Total unchanged 1183

Summary of Entry Types

Type Version 3.4 Version 3.4.1
Weakness 808 808
Category 295 295
View 38 38
Deprecated 48 48
Total 1189 1189

Back to top
Field Change Summary
Field Change Summary

Any change with respect to whitespace is ignored. "Minor" changes are text changes that only affect capitalization and punctuation. Most other changes are marked as "Major." Simple schema changes are treated as Minor, such as the change from AffectedResource to Affected_Resource in Draft 8, or the relationship name change from "IsRequiredBy" to "RequiredBy" in Version 1.0. For each mutual relationship between nodes A and B (such as ParentOf and ChildOf), a relationship change is noted for both A and B.

Field Major Minor
Name 1 0
Description 3 0
Applicable_Platforms 0 0
Time_of_Introduction 0 0
Demonstrative_Examples 0 0
Detection_Factors 0 0
Likelihood_of_Exploit 0 0
Common_Consequences 0 0
Relationships 3 0
References 0 0
Potential_Mitigations 1 0
Observed_Examples 1 0
Terminology_Notes 0 0
Alternate_Terms 0 0
Related_Attack_Patterns 0 0
Relationship_Notes 0 0
Taxonomy_Mappings 0 0
Maintenance_Notes 4 0
Modes_of_Introduction 0 0
Research_Gaps 0 0
Background_Details 0 0
Theoretical_Notes 0 0
Weakness_Ordinalities 0 0
Other_Notes 0 0
View_Type 0 0
View_Structure 0 0
View_Filter 0 0
View_Audience 0 0
Type 0 0
Source_Taxonomy 0 0

Form and Abstraction Changes

From To Total CWE IDs
Unchanged 1189

Status Changes

From To Total
Unchanged 1189

Relationship Changes

The "Version 3.4.1 Total" lists the total number of relationships in Version 3.4.1. The "Shared" value is the total number of relationships in entries that were in both Version 3.4.1 and Version 3.4. The "New" value is the total number of relationships involving entries that did not exist in Version 3.4. Thus, the total number of relationships in Version 3.4.1 would combine stats from Shared entries and New entries.

Relationship Version 3.4.1 Total Version 3.4 Total Version 3.4.1 Shared Unchanged Added to Version 3.4.1 Removed from Version 3.4 Version 3.4.1 New
ALL 9365 9363 9365 9361 4 2
ChildOf 3991 3990 3991 3990 1
ParentOf 3991 3990 3991 3990 1
MemberOf 467 467 467 466 1 1
HasMember 467 467 467 466 1 1
CanPrecede 129 129 129 129
CanFollow 129 129 129 129
StartsWith 3 3 3 3
Requires 14 14 14 14
RequiredBy 14 14 14 14
CanAlsoBe 30 30 30 30
PeerOf 130 130 130 130

Nodes Removed from Version 3.4

CWE-ID CWE Name
None.

Nodes Added to Version 3.4.1

CWE-ID CWE Name
None.

Nodes Deprecated in Version 3.4.1

CWE-ID CWE Name
None.
Back to top
Important Changes
Important Changes

A node change is labeled "important" if it is a major field change and the field is critical to the meaning of the node. The critical fields are description, name, and relationships.

Key
D Description
N Name
R Relationships

DN 88 Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')
D R 662 Improper Synchronization
D R 667 Improper Locking
R 1003 Weaknesses for Simplified Mapping of Published Vulnerabilities
Back to top
Detailed Difference Report
Detailed Difference Report
88 Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')
Major Description, Name, Observed_Examples, Potential_Mitigations
Minor None
662 Improper Synchronization
Major Description, Maintenance_Notes, Relationships
Minor None
667 Improper Locking
Major Description, Maintenance_Notes, Relationships
Minor None
820 Missing Synchronization
Major Maintenance_Notes
Minor None
821 Incorrect Synchronization
Major Maintenance_Notes
Minor None
1003 Weaknesses for Simplified Mapping of Published Vulnerabilities
Major Relationships
Minor None
Back to top
Page Last Updated: September 23, 2019
 

Use of the Common Weakness Enumeration (CWE™) and the associated references from this website are subject to the Terms of Use. CWE is sponsored by the U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) and managed by the Homeland Security Systems Engineering and Development Institute (HSSEDI) which is operated by The MITRE Corporation (MITRE). Copyright © 2006–2024, The MITRE Corporation. CWE, CWSS, CWRAF, and the CWE logo are trademarks of The MITRE Corporation.