HTTP/1.1 200 OK Date: Fri, 10 Oct 2025 10:53:17 GMT Accept-Ranges: bytes X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=15768000; includeSubDomains; preload X-Frame-Options: SAMEORIGIN Content-Security-Policy: default-src 'self' mitre.org *.mitre.org *.google.com *.withgoogle.com *.googleadservices.com *.google-analytics.com www.googletagmanager.com *.gstatic.com platform.twitter.com syndication.twitter.com www.youtube.com www.youtube-nocookie.com *.osano.com play.vidyard.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' mitre.org *.mitre.org *.google.com *.withgoogle.com *.googleadservices.com *.google-analytics.com www.googletagmanager.com *.gstatic.com platform.twitter.com syndication.twitter.com www.youtube.com www.youtube-nocookie.com *.osano.com play.vidyard.com; style-src 'self' 'unsafe-inline' 'unsafe-eval' mitre.org *.mitre.org *.google.com *.withgoogle.com *.googleadservices.com *.google-analytics.com www.googletagmanager.com *.gstatic.com platform.twitter.com syndication.twitter.com www.youtube.com www.youtube-nocookie.com *.osano.com play.vidyard.com; frame-ancestors 'self'; worker-src blob: Content-Type: text/html Set-Cookie: TS01c50eb2=012ca1a6c4adcd3b1f6f6e66e91657656c93cb24423973b4d1c39322a6b355333a4349c733fb6f2d75209ac69ae6ae73b1333798cc; Path=/; Domain=.cwe.mitre.org; Transfer-Encoding: chunked

	CWE Glossary Definition Knowing the weaknesses that result in vulnerabilities means software developers, hardware designers, and security architects can eliminate them before deployment, when it is much easier and cheaper to do so Learn About CWE Overview – Learn what CWE is and how to use the information available on this website Basics FAQs Glossary Root Cause Mapping – Learn about identifying the underlying cause(s) of a vulnerability Guidance Quick Tips Examples Access Content All Weaknesses (944 total) Top-N Lists Search CWE View CWEs by Software Development Hardware Design All Weaknesses Other Select Options CWE REST API Quick Start Contribute Contribute CWE Content Participate in Working Groups Latest News and Updates News CWE Version 4.18 Now Available! News “2025 CWE™ Most Important Hardware Weaknesses” Now Available Podcast Mapping CVEs to CWEs Is Main Topic of “We Speak CVE” Podcast News Videos of Three CWE-Focused Sessions at VulnCon 2025 Now Available Podcast “Root Cause Mapping and the CWE Top 25” News “2024 CWE Top 10 KEV Weaknesses” List Now Available Community View and Comment on Community Submissions in the “CWE Content Development Repository (CDR)” See More >> More information is available — Please edit the custom filter or select a different filter.