CWE

Common Weakness Enumeration

A community-developed list of SW & HW weaknesses that can become vulnerabilities
New to CWE? click here!
CWE Most Important Hardware Weaknesses
CWE Top 25 Most Dangerous Weaknesses
Home > CWE List > Reports > Schema Differences between Version 1.0 and Version 1.2  
ID

Schema Differences between Version 1.0 and Version 1.2
Schema Differences between Version 1.0 and Version 1.2

Version 1.0 Schema File: cwe_schema_v4.0.xsd -> Version 1.2 Schema File: cwe_schema_v4.2.xsd

Summary
Summary

Added a Platform_Notes field for free text comments when listing the applicable platforms, languages and technologies for a given weakness.

Unlimited Mitigation_Phase elements.

Added Modification_Importance to provide a warning flag for any users relying on an entry that the CWE team has changed substantially. This attribute is set to "Critical" when the meaning of the entry may have changed in a way that alters interpretation.

Added Block_Nature attribute to the Block structure to determine the type of data contained within the Block. That is, whether we are describing a list, a good code example, a bad code example, attack code, etc.

Back to top
Page Last Updated: January 05, 2017
 

Use of the Common Weakness Enumeration (CWE™) and the associated references from this website are subject to the Terms of Use. CWE is sponsored by the U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) and managed by the Homeland Security Systems Engineering and Development Institute (HSSEDI) which is operated by The MITRE Corporation (MITRE). Copyright © 2006–2024, The MITRE Corporation. CWE, CWSS, CWRAF, and the CWE logo are trademarks of The MITRE Corporation.