CWE - Common Weakness Enumeration

CWE List
Full Dictionary View
Development View
Research View
Reports

About
Sources
Process
Documents

Community
Related Activities
Discussion List
Research
CWE/SANS Top 25
CWSS

News
Calendar
Free Newsletter

Compatibility
Program
Requirements
Declarations
Make a Declaration

Contact Us
Search the Site

News

...more

Upcoming Events

Making Security Measurable booth at Black Hat Briefings 2009, July 29-30

...more

Status Report

Version 1.4 posted May 27, 2009. Changes include: (1) 15 new entries; (2) changes to 198 existing entries, especially names, descriptions, demonstrative examples, CAPEC attack patterns, and relationships; (3) new PDF files for the entire CWE; and (4) an updated glossary and Top 25 document.

More Information

cwe@mitre.org

International in scope and free for public use, CWE™ provides a unified, measurable set of software weaknesses that is enabling more effective discussion, description, selection, and use of software security tools and services that can find these weaknesses in source code and operational systems as well as better understanding and management of software weaknesses related to architecture and design.

Page Last Updated: June 11, 2009


	CWE is a Software Assurance strategic initiative sponsored by the National Cyber Security Division of the U.S. Department of Homeland Security. This Web site is hosted by The MITRE Corporation. Copyright 2009, The MITRE Corporation. CWE and the CWE logo are trademarks of The MITRE Corporation. Contact cwe@mitre.org for more information.	Privacy policy Terms of use Contact us