CWE弱点浏览
Common Weakness Enumeration(通用弱点枚举)- 软件和硬件安全弱点的社区开发列表
总弱点数
969
分类数
410
视图数
56
CWE弱点列表 共 969 条
| CWE ID | 名称 | 抽象级别 | 状态 | 操作 |
|---|---|---|---|---|
| CWE-587 | Assignment of a Fixed Address to a Pointer | Variant | Draft | 查看详情 |
| CWE-588 | Attempt to Access Child of a Non-structure Pointer | Variant | Incomplete | 查看详情 |
| CWE-589 | Call to Non-ubiquitous API | Variant | Incomplete | 查看详情 |
| CWE-590 | Free of Memory not on the Heap | Variant | Incomplete | 查看详情 |
| CWE-591 | Sensitive Data Storage in Improperly Locked Memory | Variant | Draft | 查看详情 |
| CWE-592 | DEPRECATED: Authentication Bypass Issues | Class | Deprecated | 查看详情 |
| CWE-593 | Authentication Bypass: OpenSSL CTX Object Modified after SSL Objects are Created | Variant | Draft | 查看详情 |
| CWE-594 | J2EE Framework: Saving Unserializable Objects to Disk | Variant | Incomplete | 查看详情 |
| CWE-595 | Comparison of Object References Instead of Object Contents | Variant | Incomplete | 查看详情 |
| CWE-596 | DEPRECATED: Incorrect Semantic Object Comparison | Base | Deprecated | 查看详情 |
| CWE-597 | Use of Wrong Operator in String Comparison | Variant | Draft | 查看详情 |
| CWE-598 | Use of GET Request Method With Sensitive Query Strings | Variant | Draft | 查看详情 |
| CWE-599 | Missing Validation of OpenSSL Certificate | Variant | Incomplete | 查看详情 |
| CWE-600 | Uncaught Exception in Servlet | Variant | Draft | 查看详情 |
| CWE-601 | URL Redirection to Untrusted Site ('Open Redirect') | Base | Draft | 查看详情 |
| CWE-602 | Client-Side Enforcement of Server-Side Security | Class | Draft | 查看详情 |
| CWE-603 | Use of Client-Side Authentication | Base | Draft | 查看详情 |
| CWE-605 | Multiple Binds to the Same Port | Variant | Draft | 查看详情 |
| CWE-606 | Unchecked Input for Loop Condition | Base | Draft | 查看详情 |
| CWE-607 | Public Static Final Field References Mutable Object | Variant | Draft | 查看详情 |