|
CWE Number
|
Name
|
Number Of Related Vulnerabilities
|
|
567 |
Unsynchronized Access to Shared Data |
|
|
568 |
finalize() Method Without super.finalize() |
|
|
57 |
Path Equivalence: 'fakedir/../realdir/filename' |
|
|
570 |
Expression is Always False |
|
|
571 |
Expression is Always True |
|
|
572 |
Call to Thread run() instead of start() |
|
|
573 |
Failure to Follow Specification |
|
|
574 |
EJB Bad Practices: Use of Synchronization Primitives |
|
|
575 |
EJB Bad Practices: Use of AWT Swing |
|
|
576 |
EJB Bad Practices: Use of Java I/O |
|
|
577 |
EJB Bad Practices: Use of Sockets |
|
|
578 |
EJB Bad Practices: Use of Class Loader |
|
|
579 |
J2EE Bad Practices: Non-serializable Object Stored in Session |
|
|
58 |
Path Equivalence: Windows 8.3 Filename |
|
|
580 |
clone() Method Without super.clone() |
|
|
581 |
Object Model Violation: Just One of Equals and Hashcode Defined |
|
|
582 |
Array Declared Public, Final, and Static |
|
|
583 |
finalize() Method Declared Public |
|
|
584 |
Return Inside Finally Block |
|
|
585 |
Empty Synchronized Block |
|
|
586 |
Explicit Call to Finalize() |
|
|
587 |
Assignment of a Fixed Address to a Pointer |
|
|
588 |
Attempt to Access Child of a Non-structure Pointer |
|
|
589 |
Call to Non-ubiquitous API |
|
|
590 |
Free of Memory not on the Heap |
|
|
591 |
Sensitive Data Storage in Improperly Locked Memory |
|
|
592 |
Authentication Bypass Issues |
|
|
593 |
Authentication Bypass: OpenSSL CTX Object Modified after SSL Objects are Created |
|
|
594 |
J2EE Framework: Saving Unserializable Objects to Disk |
|
|
595 |
Comparison of Object References Instead of Object Contents |
|
|
596 |
Incorrect Semantic Object Comparison |
|
|
597 |
Use of Wrong Operator in String Comparison |
|
|
598 |
Information Leak Through Query Strings in GET Request |
|
|
599 |
Trust of OpenSSL Certificate Without Validation |
|
|
6 |
J2EE Misconfiguration: Insufficient Session-ID Length |
|
|
600 |
Failure to Catch All Exceptions in Servlet |
|
|
602 |
Client-Side Enforcement of Server-Side Security |
|
|
603 |
Use of Client-Side Authentication |
|
|
605 |
Multiple Binds to the Same Port |
|
|
606 |
Unchecked Input for Loop Condition |
|
|
607 |
Public Static Final Field References Mutable Object |
|
|
608 |
Struts: Non-private Field in ActionForm Class |
|
|
609 |
Double-Checked Locking |
|
|
612 |
Information Leak Through Indexing of Private Data |
|
|
614 |
Sensitive Cookie in HTTPS Session Without 'Secure' Attribute |
|
|
615 |
Information Leak Through Comments |
|
|
616 |
Incomplete Identification of Uploaded File Variables (PHP) |
|
|
618 |
Exposed Unsafe ActiveX Method |
|
|
619 |
Dangling Database Cursor ('Cursor Injection') |
|
|
62 |
UNIX Hard Link |
|
