CWE

Common Weakness Enumeration

A Community-Developed List of Software Weakness Types

CWE/SANS Top 25 Most Dangerous Software Errors
Home > CWE List > CWE- Individual Dictionary Definition (2.11)  
ID

CWE CATEGORY: SFP Secondary Cluster: Digital Certificate

Category ID: 948
Status: Incomplete
+ Description

Description Summary

This category identifies Software Fault Patterns (SFPs) within the Digital Certificate cluster.
+ Relationships
NatureTypeIDNameView(s) this relationship pertains toView(s)
ChildOfCategoryCategory898SFP Primary Cluster: Authentication
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness BaseWeakness Base296Improper Following of a Certificate's Chain of Trust
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness VariantWeakness Variant297Improper Validation of Certificate with Host Mismatch
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness VariantWeakness Variant298Improper Validation of Certificate Expiration
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness VariantWeakness Variant299Improper Check for Certificate Revocation
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness VariantWeakness Variant593Authentication Bypass: OpenSSL CTX Object Modified after SSL Objects are Created
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness VariantWeakness Variant599Missing Validation of OpenSSL Certificate
Software Fault Pattern (SFP) Clusters (primary)888
+ Content History
Submissions
Submission DateSubmitterOrganizationSource
2014-07-29Internal CWE Team

More information is available — Please select a different filter.
Page Last Updated: May 05, 2017