Issues within this classification are associated with vulnerable assets. Explore CWE-1403 and its members to understand software assurance trends and weaknesses like misconfigurations, external control, insecure file storage, and more.

CWE-1400: Comprehensive Categorization: Relationship Research View

CWE-8: Declaration of Remote Entity Bean in Java EE Application

CWE-15: SFP Secondary Cluster - Tainted Input to Variable

CWE-73: Secure Code Review

CWE-114: Incorporating Libraries or Frameworks Vulnerability

CWE-219: Insecure Configuration Management

CWE-220: SFP Secondary Cluster - Exposed Data

CWE-374: Passing Mutable Objects to an External Function

CWE-375: Return of Mutable Object (Alias) Data (OBJ)

CWE-377: Insecure Temporary File Creation

CWE-378: Exposure of Temporary File to Wrong Audience

CWE-379: Vulnerabilities Related to Temporary Files

CWE-402: Exposed Resource

CWE-403: File Descriptor Leak

CWE-426: Environment Variables Containing User-Controlled Input

CWE-427: Substitution Attack

CWE-428: SFP Secondary Cluster Path Traversal

CWE-433: File System Interpretation Vulnerability

CWE-472: Insecure Direct Object Reference

CWE-488: Data Leakage Between Sessions

CWE-491: Object Hijack

CWE-492: Encapsulation in Java Programming

CWE-493: Encapsulation

CWE-498: Clonable Class

CWE-499: Serialization of Sensitive Data in Java

CWE-500: Object Orientation Issues

CWE-524: SFP Secondary Cluster - Insecure Session Management

CWE-525: Insecure Data Cache Storage

CWE-527: Insecure Configuration Management

CWE-528: Insecure Core Dump Configuration

CWE-529: Insecure Configuration Management

CWE-530: Insecure Configuration Management

CWE-539: Information Exposure Through Persistent Cookies

CWE-552: Insecure Configuration Management

CWE-553: SFP Secondary Cluster - Tainted Input to Command

CWE-565: Secure Cookie Usage in Architecture and Design

CWE-582: Exposed Resource

CWE-583: Insecure Use of Finalize Method

CWE-608: Secure Getter Usage

CWE-619: SFP Secondary Cluster: Tainted Input to Command

CWE-642: Insufficient User State Management

CWE-668: Misuse of CWE-668 Classifications

CWE-767: Improper Validation of Class Accessor Methods

CWE-784: Software and Data Integrity Failures

CWE-1282: Comprehensive Categorization - Exposed Resource

CWE-1327: Comprehensive Categorization: Exposed Resource

Discover vulnerabilities related to vulnerable assets in software. Explore misconfigurations, external control, insecure file storage, and more with CWE-1403 to enhance security measures.

Vulnerable Assets: Explore Software Assurance Trends

Issues within this classification are associated with vulnerable assets.

CWE-1403: Vulnerable Assets

CWE-1403: Vulnerable Assets

Summary

Is your System Free of Underlying Vulnerabilities?
Find Out Now

CWE-1403: Vulnerable Assets

Summary

Is your System Free of Underlying Vulnerabilities? Find Out Now

Is your System Free of Underlying Vulnerabilities?
Find Out Now