CWE

Common Weakness Enumeration

A Community-Developed List of Software Weakness Types

CWE/SANS Top 25 Most Dangerous Software Errors
Home > CWE List > CWE- Individual Dictionary Definition (2.11)  
ID

CWE CATEGORY: SFP Secondary Cluster: Faulty Endpoint Authentication

Category ID: 949
Status: Incomplete
+ Description

Description Summary

This category identifies Software Fault Patterns (SFPs) within the Faulty Endpoint Authentication cluster.
+ Relationships
NatureTypeIDNameView(s) this relationship pertains toView(s)
ChildOfCategoryCategory898SFP Primary Cluster: Authentication
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness VariantWeakness Variant293Using Referer Field for Authentication
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness VariantWeakness Variant302Authentication Bypass by Assumed-Immutable Data
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness ClassWeakness Class345Insufficient Verification of Data Authenticity
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness BaseWeakness Base346Origin Validation Error
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness VariantWeakness Variant350Reliance on Reverse DNS Resolution for a Security-Critical Action
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness BaseWeakness Base360Trust of System Event Data
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness BaseWeakness Base551Incorrect Behavior Order: Authorization Before Parsing and Canonicalization
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness BaseWeakness Base565Reliance on Cookies without Validation and Integrity Checking
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness VariantWeakness Variant647Use of Non-Canonical URL Paths for Authorization Decisions
Software Fault Pattern (SFP) Clusters (primary)888
+ Content History
Submissions
Submission DateSubmitterOrganizationSource
2014-07-29Internal CWE Team

More information is available — Please select a different filter.
Page Last Updated: May 05, 2017