CWE - Common Weakness Enumeration

2021 CWE Most Important Hardware Weaknesses

CWE Top 25 Most Dangerous Weaknesses

CWE™ is a community-developed list of software and hardware weakness types. It serves as a common language, a measuring stick for security tools, and as a baseline for weakness identification, mitigation, and prevention efforts.

CWE List Quick Access
View CWE Search CWE Total Weaknesses: 924

2021 CWE Most Important Hardware Weaknesses A first of its kind, community-developed list of hardware weaknesses with detailed descriptions and authoritative guidance for mitigating and avoiding them. Hardware List \| Limitations \| Methodology \| More
Community Engagement
Hardware CWE SIG	Read the meeting minutes
User Experience Working Group	Join the CWE/CAPEC UX WG
CWE/CAPEC Board	Read the meeting minutes
To get involved, contact us

CWE News
Blog HTTP Desync: The Redux and Evolution of HTTP Smuggling and Splitting Attack Techniques News CWE/CAPEC Communications Survey News CWE/CAPEC Board Member Jason Fung Discusses the Most Important Hardware CWEs on Podcast Blog Neutralizing Your Inputs: a Log4Shell Weakness Story Podcast CWE and Hardware Security More >>

More information is available — Please select a different filter.

Page Last Updated: January 13, 2022


	Site Map \| Terms of Use \| Privacy Policy \| Contact Us \| Use of the Common Weakness Enumeration (CWE) and the associated references from this website are subject to the Terms of Use. CWE is sponsored by the U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) and managed by the Homeland Security Systems Engineering and Development Institute (HSSEDI) which is operated by The MITRE Corporation (MITRE). Copyright © 2006-2021, The MITRE Corporation. CWE, CWSS, CWRAF, and the CWE logo are trademarks of The MITRE Corporation.