Weaknesses Used by NVD
View ID: 635 (View: Explicit Slice)Status: Draft
+ View Data

View Objective

CWE nodes in this view (slice) are used by NIST to categorize vulnerabilities within NVD.

+ View Metrics
CWEs in this viewTotal CWEs
Total19out of810
Views0out of23
Categories6out of110
Weaknesses12out of668
Compound_Elements1out of9
+ Relationships
NatureTypeIDNameView(s) this relationship pertains toView(s)
HasMemberCategoryCategory16Configuration
Weaknesses Used by NVD (primary)635
HasMemberWeakness ClassWeakness Class20Improper Input Validation
Weaknesses Used by NVD (primary)635
HasMemberWeakness ClassWeakness Class22Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Weaknesses Used by NVD (primary)635
HasMemberWeakness BaseWeakness Base59Improper Link Resolution Before File Access ('Link Following')
Weaknesses Used by NVD (primary)635
HasMemberWeakness BaseWeakness Base78Improper Sanitization of Special Elements used in an OS Command ('OS Command Injection')
Weaknesses Used by NVD (primary)635
HasMemberWeakness BaseWeakness Base79Failure to Preserve Web Page Structure ('Cross-site Scripting')
Weaknesses Used by NVD (primary)635
HasMemberWeakness BaseWeakness Base89Improper Sanitization of Special Elements used in an SQL Command ('SQL Injection')
Weaknesses Used by NVD (primary)635
HasMemberWeakness ClassWeakness Class94Failure to Control Generation of Code ('Code Injection')
Weaknesses Used by NVD (primary)635
HasMemberWeakness ClassWeakness Class119Failure to Constrain Operations within the Bounds of a Memory Buffer
Weaknesses Used by NVD (primary)635
HasMemberWeakness BaseWeakness Base134Uncontrolled Format String
Weaknesses Used by NVD (primary)635
HasMemberCategoryCategory189Numeric Errors
Weaknesses Used by NVD (primary)635
HasMemberWeakness ClassWeakness Class200Information Exposure
Weaknesses Used by NVD (primary)635
HasMemberCategoryCategory255Credentials Management
Weaknesses Used by NVD (primary)635
HasMemberCategoryCategory264Permissions, Privileges, and Access Controls
Weaknesses Used by NVD (primary)635
HasMemberWeakness ClassWeakness Class287Improper Authentication
Weaknesses Used by NVD (primary)635
HasMemberCategoryCategory310Cryptographic Issues
Weaknesses Used by NVD (primary)635
HasMemberCompound Element: CompositeCompound Element: Composite352Cross-Site Request Forgery (CSRF)
Weaknesses Used by NVD (primary)635
HasMemberWeakness ClassWeakness Class362Race Condition
Weaknesses Used by NVD (primary)635
HasMemberCategoryCategory399Resource Management Errors
Weaknesses Used by NVD (primary)635
+ References
NIST. "CWE - Common Weakness Enumeration". <http://nvd.nist.gov/cwe.cfm>.
+ Maintenance Notes

The set of CWE elements as used in NVD was created in summer of 2007. Since then, CWE has grown, so it is expected that this list will change. The current organization as used by NVD is captured in the following image.

+ Content History
Modifications
Modification DateModifierOrganizationSource
2008-09-08CWE Content TeamMITREInternal
updated Maintenance Notes, Relationships, References, View Structure
Back to top