CWE

Common Weakness Enumeration

A Community-Developed List of Software Weakness Types

CWE/SANS Top 25 Most Dangerous Software Errors
Home > CWE List > CWE- Individual Dictionary Definition (2.11)  
ID

CWE CATEGORY: SFP Secondary Cluster: Insecure Session Management

Category ID: 965
Status: Incomplete
+ Description

Description Summary

This category identifies Software Fault Patterns (SFPs) within the Insecure Session Management cluster.
+ Relationships
NatureTypeIDNameView(s) this relationship pertains toView(s)
ChildOfCategoryCategory895SFP Primary Cluster: Information Leak
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness VariantWeakness Variant6J2EE Misconfiguration: Insufficient Session-ID Length
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness VariantWeakness Variant488Exposure of Data Element to Wrong Session
Software Fault Pattern (SFP) Clusters (primary)888
ParentOfWeakness VariantWeakness Variant524Information Exposure Through Caching
Software Fault Pattern (SFP) Clusters (primary)888
+ Content History
Submissions
Submission DateSubmitterOrganizationSource
2014-07-29Internal CWE Team

More information is available — Please select a different filter.
Page Last Updated: May 05, 2017