CWE Number
|
Name
|
Number Of Related Vulnerabilities
|
298 |
Improper Validation of Certificate Expiration |
|
30 |
Path Traversal: '\dir\..\filename' |
|
301 |
Reflection Attack in an Authentication Protocol |
|
308 |
Use of Single-factor Authentication |
|
309 |
Use of Password System for Primary Authentication |
|
31 |
Path Traversal: 'dir\..\..\filename' |
|
314 |
Plaintext Storage in the Registry |
|
32 |
Path Traversal: '...' (Triple Dot) |
|
329 |
Not Using a Random IV with CBC Mode |
|
33 |
Path Traversal: '....' (Multiple Dot) |
|
333 |
Improper Handling of Insufficient Entropy in TRNG |
|
336 |
Same Seed in PRNG |
|
339 |
Small Seed Space in PRNG |
|
34 |
Path Traversal: '....//' |
|
340 |
Predictability Problems |
|
343 |
Predictable Value Range from Previous Values |
|
344 |
Use of Invariant Value in Dynamically Changing Context |
|
348 |
Use of Less Trusted Source |
|
351 |
Insufficient Type Distinction |
|
356 |
Product UI does not Warn User of Unsafe Actions |
|
357 |
Insufficient UI Warning of Dangerous Operations |
|
360 |
Trust of System Event Data |
|
365 |
Race Condition in Switch |
|
368 |
Context Switching Race Condition |
|
37 |
Path Traversal: '/absolute/pathname/here' |
|
370 |
Missing Check for Certificate Revocation after Initial Check |
|
372 |
Incomplete Internal State Distinction |
|
373 |
State Synchronization Error |
|
374 |
Mutable Objects Passed by Reference |
|
375 |
Passing Mutable Objects to an Untrusted Method |
|
38 |
Path Traversal: '\absolute\pathname\here' |
|
382 |
J2EE Bad Practices: Use of System.exit() |
|
383 |
J2EE Bad Practices: Direct Use of Threads |
|
386 |
Symbolic Name not Mapping to Correct Object |
|
39 |
Path Traversal: 'C:dirname' |
|
392 |
Failure to Report Error in Status Code |
|
393 |
Return of Wrong Status Code |
|
394 |
Unexpected Status Code or Return Value |
|
395 |
Use of NullPointerException Catch to Detect NULL Pointer Dereference |
|
396 |
Declaration of Catch for Generic Exception |
|
397 |
Declaration of Throws for Generic Exception |
|
40 |
Path Traversal: '\\UNC\share\name\' (Windows UNC Share) |
|
402 |
Transmission of Private Resources into a New Sphere ('Resource Leak') |
|
403 |
UNIX File Descriptor Leak |
|
408 |
Incorrect Behavior Order: Early Amplification |
|
409 |
Improper Handling of Highly Compressed Data (Data Amplification) |
|
41 |
Improper Resolution of Path Equivalence |
|
412 |
Unrestricted Externally Accessible Lock |
|
413 |
Insufficient Resource Locking |
|
414 |
Missing Lock Check |
|