Differences between Version 4.19 and Version 4.19.1
| Total weaknesses/chains/composites (Version 4.19.1) |
944 |
| Total weaknesses/chains/composites (Version 4.19) |
944 |
| Total new |
0 |
| Total deprecated |
0 |
| Total with major changes |
9 |
| Total with only minor changes |
0 |
| Total unchanged |
1438 |
Summary of Entry Types
| Type |
Version 4.19 |
Version 4.19.1 |
| Weakness |
944 |
944 |
| Category |
385 |
385 |
| View |
54 |
54 |
| Deprecated |
64 |
64 |
| Total |
1447 |
1447 |
Field Change Summary
Field Change Summary
Any change with respect to whitespace is ignored. "Minor"
changes are text changes that only affect capitalization and
punctuation. Most other changes are marked as "Major."
Simple schema changes are treated as Minor, such as the change from
AffectedResource to Affected_Resource in Draft 8, or the relationship
name change from "IsRequiredBy" to "RequiredBy" in
Version 1.0. For each mutual relationship between nodes A and B (such
as ParentOf and ChildOf), a relationship change is noted for both A
and B.
| Field |
Major |
Minor |
| Name |
0 |
0 |
| Description |
0 |
0 |
| Diagram |
0 |
0 |
| Relationships |
9 |
0 |
| Common_Consequences |
0 |
0 |
| Applicable_Platforms |
0 |
0 |
| Modes_of_Introduction |
0 |
0 |
| Detection_Factors |
0 |
0 |
| Potential_Mitigations |
0 |
0 |
| Demonstrative_Examples |
0 |
0 |
| Observed_Examples |
0 |
0 |
| Related_Attack_Patterns |
0 |
0 |
| Weakness_Ordinalities |
0 |
0 |
| Time_of_Introduction |
0 |
0 |
| Likelihood_of_Exploit |
0 |
0 |
| References |
0 |
0 |
| Mapping_Notes |
0 |
0 |
| Terminology_Notes |
0 |
0 |
| Alternate_Terms |
0 |
0 |
| Relationship_Notes |
0 |
0 |
| Taxonomy_Mappings |
0 |
0 |
| Maintenance_Notes |
0 |
0 |
| Affected_Resources |
0 |
0 |
| Functional_Areas |
0 |
0 |
| Research_Gaps |
0 |
0 |
| Background_Details |
0 |
0 |
| Theoretical_Notes |
0 |
0 |
| Other_Notes |
0 |
0 |
| View_Type |
0 |
0 |
| View_Structure |
0 |
0 |
| View_Filter |
0 |
0 |
| View_Audience |
0 |
0 |
| Type |
0 |
0 |
| Source_Taxonomy |
0 |
0 |
Form and Abstraction Changes
| From |
To |
Total |
CWE IDs |
| Unchanged |
|
1447 |
|
Status Changes
| From |
To |
Total |
| Unchanged |
|
1447 |
Relationship Changes
The "Version 4.19.1 Total" lists the total number of relationships
in Version 4.19.1. The "Shared" value is the total number of
relationships in entries that were in both Version 4.19.1 and Version 4.19. The
"New" value is the total number of relationships involving
entries that did not exist in Version 4.19. Thus, the total number of
relationships in Version 4.19.1 would combine stats from Shared entries and
New entries.
| Relationship |
Version 4.19.1 Total |
Version 4.19 Total |
Version 4.19.1 Shared |
Unchanged |
Added to Version 4.19.1 |
Removed from Version 4.19 |
Version 4.19.1 New |
| ALL |
13162 |
13162 |
13162 |
13154 |
8 |
8 |
|
| ChildOf |
5557 |
5557 |
5557 |
5557 |
|
|
|
| ParentOf |
5557 |
5557 |
5557 |
5557 |
|
|
|
| MemberOf |
762 |
762 |
762 |
758 |
4 |
4 |
|
| HasMember |
762 |
762 |
762 |
758 |
4 |
4 |
|
| CanPrecede |
143 |
143 |
143 |
143 |
|
|
|
| CanFollow |
143 |
143 |
143 |
143 |
|
|
|
| StartsWith |
3 |
3 |
3 |
3 |
|
|
|
| Requires |
13 |
13 |
13 |
13 |
|
|
|
| RequiredBy |
13 |
13 |
13 |
13 |
|
|
|
| CanAlsoBe |
27 |
27 |
27 |
27 |
|
|
|
| PeerOf |
182 |
182 |
182 |
182 |
|
|
|
Nodes Removed in Version 4.19.1
Nodes Added to Version 4.19.1
Nodes Deprecated in Version 4.19.1
Important Changes
Important Changes
A node change is labeled "important" if it is a major field change and
the field is critical to the meaning of the node. The critical fields
are description, name, and relationships.
| Key |
| D |
Description |
| N |
Name |
| R |
Relationships |
| | | R |
120 |
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') |
| | | R |
121 |
Stack-based Buffer Overflow |
| | | R |
122 |
Heap-based Buffer Overflow |
| | | R |
269 |
Improper Privilege Management |
| | | R |
276 |
Incorrect Default Permissions |
| | | R |
284 |
Improper Access Control |
| | | R |
287 |
Improper Authentication |
| | | R |
829 |
Inclusion of Functionality from Untrusted Control Sphere |
| | | R |
1435 |
Weaknesses in the 2025 CWE Top 25 Most Dangerous Software Weaknesses |
Detailed Difference Report
Detailed Difference Report
| 120 |
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') |
|
Major |
Relationships |
|
Minor |
None |
| 121 |
Stack-based Buffer Overflow |
|
Major |
Relationships |
|
Minor |
None |
| 122 |
Heap-based Buffer Overflow |
|
Major |
Relationships |
|
Minor |
None |
| 269 |
Improper Privilege Management |
|
Major |
Relationships |
|
Minor |
None |
| 276 |
Incorrect Default Permissions |
|
Major |
Relationships |
|
Minor |
None |
| 284 |
Improper Access Control |
|
Major |
Relationships |
|
Minor |
None |
| 287 |
Improper Authentication |
|
Major |
Relationships |
|
Minor |
None |
| 829 |
Inclusion of Functionality from Untrusted Control Sphere |
|
Major |
Relationships |
|
Minor |
None |
| 1435 |
Weaknesses in the 2025 CWE Top 25 Most Dangerous Software Weaknesses |
|
Major |
Relationships |
|
Minor |
None |
More information is available — Please edit the custom filter or select a different filter.
|
