CWE-951: SFP Secondary Cluster: Insecure Authentication Policy
ID
CWE-951
Status
Incomplete
This category identifies Software Fault Patterns (SFPs) within the Insecure Authentication Policy cluster.
Relationships
| View | Weakness | ||||||
|---|---|---|---|---|---|---|---|
| # ID | Name | # ID | Name | Abstraction | Structure | Status | |
| CWE-888 | Software Fault Pattern (SFP) Clusters | CWE-262 | Not Using Password Aging | Base | Simple | Draft | |
| CWE-888 | Software Fault Pattern (SFP) Clusters | CWE-263 | Password Aging with Long Expiration | Base | Simple | Draft | |
| CWE-888 | Software Fault Pattern (SFP) Clusters | CWE-521 | Weak Password Requirements | Base | Simple | Draft | |
| CWE-888 | Software Fault Pattern (SFP) Clusters | CWE-556 | ASP.NET Misconfiguration: Use of Identity Impersonation | Variant | Simple | Incomplete | |
| CWE-888 | Software Fault Pattern (SFP) Clusters | CWE-613 | Insufficient Session Expiration | Base | Simple | Incomplete | |
| CWE-888 | Software Fault Pattern (SFP) Clusters | CWE-645 | Overly Restrictive Account Lockout Mechanism | Base | Simple | Incomplete | |
Loading...