A category in the Common Weakness Enumeration published by The MITRE Corporation.
Categories in the Common Weakness Enumeration (CWE) group entries based on some common characteristic or attribute.
Weaknesses in this category are related to issues surrounding the bundling of data with the methods intended to operate on that data.
The software is intended to manage data access through a particular data manager component such as a relational or non-SQL database, but it contains code that performs...
The software uses a dedicated, central data manager component as required by design, but it contains code that performs data-access operations that do not use this dat...
The product or code uses machine-dependent functionality, but it does not sufficiently encapsulate or isolate this functionality from the rest of the code.
The product or code does not isolate system-dependent functionality into separate standalone modules.
The code at one architectural layer invokes code that resides at a deeper layer than the adjacent layer, i.e., the invocation skips at least one layer, and t...
A method for a class performs an operation that directly accesses a member element from another class.
The code has a parent class that contains references to a child class, its methods, or its members.
This view organizes weaknesses around concepts that are frequently used or encountered in software development. This includes all aspects of the software development l...