CWE CATEGORY: Configuration
Weaknesses in this category are typically introduced during the configuration of the software.
Further discussion about this category was held over the CWE Research mailing list in early 2020. No definitive action has been decided.
This entry is a Category, but various sources map to it anyway despite CWE guidance that Categories should not be mapped. In this case, there are no clear CWE Weaknesses that can be utilized. "Inappropriate Configuration" might be better described as a Weakness, so this entry might be converted to a Weakness in a later version. Further research is required, however, as a "configuration weakness" might be Primary to many other CWEs, i.e., it might be better described in terms of chaining relationships.
More information is available — Please select a different filter.