![]() A chain is a set of weaknesses that must be reachable consecutively in order to produce an exploitable vulnerability. A variant is a weakness that is described at a very low level of detail, typically limited to a specific language or technology. Base level weaknesses are used to present a more specific type of weakness. ![]() Classes are still very abstract, typically independent of any specific language or technology. Below these top-level entries are weaknesses are varying levels of abstraction. Pillars are weaknesses that are described in the most abstract fashion. Categories (which are not technically weaknesses) are special CWE entries used to group weaknesses that share a common characteristic. At the highest level, categories and pillars exist to group weaknesses. The following graph shows the tree-like relationships between weaknesses that exist at different levels of abstraction.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |