1. Home
  2. Weaknesses
  3. CWE-5

CWE-5: J2EE Misconfiguration: Data Transmission Without Encryption

ID CWE-5
Abstraction Variant
Structure Simple
Status Draft
Detail Web & Social
Information sent over a network can be compromised while in transit. An attacker may be able to read or modify the contents if the data are sent in plaintext or are weakly encrypted.

Modes of Introduction

Phase Note
Implementation
Operation

Applicable Platforms

Type Class Name Prevalence
Language Java

Relationships

View Weakness
# ID View Status # ID Name Abstraction Structure Status
CWE-1000 Research Concepts Draft CWE-319 Cleartext Transmission of Sensitive Information Base Simple Draft