CWE-1344: Hierarchical Connections in Graph with OWASP Top Ten

The entries found in this graph are connected to the OWASP Top Ten, which was unveiled in 2021.

The graph presented illustrates the hierarchical connections between different levels of abstract weaknesses. There are categories and pillars at the highest level, which serve to group weaknesses together. Categories, although not technically weaknesses, are special entries in CWE that assist in grouping weaknesses sharing common traits. Meanwhile, pillars represent weaknesses depicted in a highly abstract manner. Positioned below these top-level entries are weaknesses at varying levels of abstraction. Classes, which remain highly abstract, are usually not specific to any particular language or technology. On the other hand, base level weaknesses focus on presenting more specific types of weaknesses. Variants, on the other hand, provide detailed descriptions of weaknesses, often limited to a specific language or technology. Chains refer to sets of weaknesses that must be sequentially reachable to exploit a vulnerability. Conversely, composites are sets of weaknesses that must all be simultaneously present to exploit a vulnerability.