| ID |
Name |
CVE |
| CWE-129 |
Improper Validation of Array Index |
|
|
74 |
| CWE-617 |
Reachable Assertion |
|
|
73 |
| CWE-345 |
Insufficient Verification of Data Authenticity |
|
|
69 |
| CWE-320 |
Key Management Errors |
|
|
65 |
| CWE-327 |
Use of a Broken or Risky Cryptographic Algorithm |
|
|
65 |
| CWE-668 |
Exposure of Resource to Wrong Sphere |
|
|
63 |
| CWE-276 |
Incorrect Default Permissions |
|
|
63 |
| CWE-404 |
Improper Resource Shutdown or Release |
|
|
60 |
| CWE-311 |
Missing Encryption of Sensitive Data |
|
|
58 |
| CWE-640 |
Weak Password Recovery Mechanism for Forgotten Password |
|
|
57 |
| CWE-191 |
Integer Underflow (Wrap or Wraparound) |
|
|
55 |
| CWE-388 |
Error Handling |
|
|
51 |
| CWE-346 |
Origin Validation Error |
|
|
49 |
| CWE-665 |
Improper Initialization |
|
|
47 |
| CWE-330 |
Use of Insufficiently Random Values |
|
|
46 |
| CWE-312 |
Cleartext Storage of Sensitive Information |
|
|
43 |
| CWE-754 |
Improper Check for Unusual or Exceptional Conditions |
|
|
39 |
| CWE-613 |
Insufficient Session Expiration |
|
|
39 |
| CWE-428 |
Unquoted Search Path or Element |
|
|
38 |
| CWE-674 |
Uncontrolled Recursion |
|
|
37 |
