CWE-1349: OWASP Top Ten 2021 Category A05:2021 - Security Misconfiguration
ID
CWE-1349
Status
Incomplete
Weaknesses in this category are related to the A05 category "Security Misconfiguration" in the OWASP Top Ten 2021.
Relationships
View | Weakness | ||||||
---|---|---|---|---|---|---|---|
# ID | Name | # ID | Name | Abstraction | Structure | Status | |
CWE-1344 | Weaknesses in OWASP Top Ten (2021) | CWE-2 | 7PK - Environment | Draft | |||
CWE-1344 | Weaknesses in OWASP Top Ten (2021) | CWE-11 | ASP.NET Misconfiguration: Creating Debug Binary | Variant | Simple | Draft | |
CWE-1344 | Weaknesses in OWASP Top Ten (2021) | CWE-13 | ASP.NET Misconfiguration: Password in Configuration File | Variant | Simple | Draft | |
CWE-1344 | Weaknesses in OWASP Top Ten (2021) | CWE-15 | External Control of System or Configuration Setting | Base | Simple | Incomplete | |
CWE-1344 | Weaknesses in OWASP Top Ten (2021) | CWE-16 | Configuration | Obsolete | |||
CWE-1344 | Weaknesses in OWASP Top Ten (2021) | CWE-260 | Password in Configuration File | Base | Simple | Incomplete | |
CWE-1344 | Weaknesses in OWASP Top Ten (2021) | CWE-315 | Cleartext Storage of Sensitive Information in a Cookie | Variant | Simple | Draft | |
CWE-1344 | Weaknesses in OWASP Top Ten (2021) | CWE-520 | .NET Misconfiguration: Use of Impersonation | Variant | Simple | Incomplete | |
CWE-1344 | Weaknesses in OWASP Top Ten (2021) | CWE-526 | Cleartext Storage of Sensitive Information in an Environment Variable | Variant | Simple | Incomplete | |
CWE-1344 | Weaknesses in OWASP Top Ten (2021) | CWE-537 | Java Runtime Error Message Containing Sensitive Information | Variant | Simple | Incomplete | |
CWE-1344 | Weaknesses in OWASP Top Ten (2021) | CWE-541 | Inclusion of Sensitive Information in an Include File | Variant | Simple | Incomplete | |
CWE-1344 | Weaknesses in OWASP Top Ten (2021) | CWE-547 | Use of Hard-coded, Security-relevant Constants | Base | Simple | Draft | |
CWE-1344 | Weaknesses in OWASP Top Ten (2021) | CWE-611 | Improper Restriction of XML External Entity Reference | Base | Simple | Draft | |
CWE-1344 | Weaknesses in OWASP Top Ten (2021) | CWE-614 | Sensitive Cookie in HTTPS Session Without 'Secure' Attribute | Variant | Simple | Draft | |
CWE-1344 | Weaknesses in OWASP Top Ten (2021) | CWE-756 | Missing Custom Error Page | Base | Simple | Incomplete | |
CWE-1344 | Weaknesses in OWASP Top Ten (2021) | CWE-776 | Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion') | Base | Simple | Draft | |
CWE-1344 | Weaknesses in OWASP Top Ten (2021) | CWE-942 | Permissive Cross-domain Policy with Untrusted Domains | Variant | Simple | Incomplete | |
CWE-1344 | Weaknesses in OWASP Top Ten (2021) | CWE-1004 | Sensitive Cookie Without 'HttpOnly' Flag | Variant | Simple | Incomplete | |
CWE-1344 | Weaknesses in OWASP Top Ten (2021) | CWE-1032 | OWASP Top Ten 2017 Category A6 - Security Misconfiguration | Incomplete | |||
CWE-1344 | Weaknesses in OWASP Top Ten (2021) | CWE-1174 | ASP.NET Misconfiguration: Improper Model Validation | Variant | Simple | Draft |
Loading...