CWE-945: SFP Secondary Cluster: Insecure Resource Access
ID
CWE-945
Status
Incomplete
This category identifies Software Fault Patterns (SFPs) within the Insecure Resource Access cluster (SFP35).
Relationships
| View | Weakness | ||||||
|---|---|---|---|---|---|---|---|
| # ID | Name | # ID | Name | Abstraction | Structure | Status | |
| CWE-888 | Software Fault Pattern (SFP) Clusters | CWE-285 | Improper Authorization | Class | Simple | Draft | |
| CWE-888 | Software Fault Pattern (SFP) Clusters | CWE-424 | Improper Protection of Alternate Path | Class | Simple | Draft | |
| CWE-888 | Software Fault Pattern (SFP) Clusters | CWE-639 | Authorization Bypass Through User-Controlled Key | Base | Simple | Incomplete | |
| CWE-888 | Software Fault Pattern (SFP) Clusters | CWE-650 | Trusting HTTP Permission Methods on the Server Side | Variant | Simple | Incomplete | |
Loading...