CWE

Common Weakness Enumeration

A Community-Developed List of Software Weakness Types

CWE/SANS Top 25 Most Dangerous Software Errors
Home > CWE List > CWE- Individual Dictionary Definition (2.11)  
ID

CWE CATEGORY: SFP Secondary Cluster: Weak Cryptography

Category ID: 959
Status: Incomplete
+ Description

Description Summary

This category identifies Software Fault Patterns (SFPs) within the Weak Cryptography cluster.
+ Relationships
NatureTypeIDNameView(s) this relationship pertains toView(s)
ChildOfCategoryCategory903SFP Primary Cluster: Cryptography
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness VariantWeakness Variant261Weak Cryptography for Passwords
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness BaseWeakness Base322Key Exchange without Entity Authentication
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness BaseWeakness Base323Reusing a Nonce, Key Pair in Encryption
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness BaseWeakness Base324Use of a Key Past its Expiration Date
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness ClassWeakness Class326Inadequate Encryption Strength
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness VariantWeakness Variant329Not Using a Random IV with CBC Mode
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness BaseWeakness Base347Improper Verification of Cryptographic Signature
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness BaseWeakness Base640Weak Password Recovery Mechanism for Forgotten Password
Software Fault Pattern (SFP) Clusters (primary)888
+ Content History
Submissions
Submission DateSubmitterOrganizationSource
2014-07-29Internal CWE Team

More information is available — Please select a different filter.
Page Last Updated: May 05, 2017