CWE

Common Weakness Enumeration

A Community-Developed List of Software & Hardware Weakness Types

2021 CWE Most Important Hardware Weaknesses
CWE Top 25 Most Dangerous Weaknesses
 
ID

CWE™ is a community-developed list of software and hardware weakness types. It serves as a common language, a measuring stick for security tools, and as a baseline for weakness identification, mitigation, and prevention efforts.

Viewing Customized CWE information

The CWE Team, in collaboration with the CWE/CAPEC User Experience Working Group (UEWG), has updated how users can view Weaknesses to display only those weakness details that are most relevant to them, as noted below. This update replaces the often-overlooked dropdown menu with four new filter options that better reflect the needs of our audience.

These content viewing options are available at the top of each CWE Weakness. Please review the hover text below for a description of each content filter.

  • Conceptual
  • Operational
  • Mapping Friendly
  • Complete
Community Engagement
Hardware CWE Special Interest Group
 Join HW CWE SIG
ICS/OT Special Interest Group
 Join ICS/OT SIG
REST API Working Group
 Join REST API WG
User Experience Working Group
 Join UE WG
CWE/CAPEC Board
 Read meeting minutes

Please see our Guidelines for New Content Suggestions
For other ways to get involved, contact us
More information is available — Please select a different filter.
Page Last Updated: October 12, 2022