A category in the Common Weakness Enumeration published by The MITRE Corporation.
Categories in the Common Weakness Enumeration (CWE) group entries based on some common characteristic or attribute.
Weaknesses in this category are related to the creation and modification of strings.
The product does not correctly calculate the length of strings that can contain wide or multi-byte characters.
The product uses a function that accepts a format string as an argument, but the format string originates from an external source.
The product accidentally uses the wrong operator, which changes the logic in security-relevant ways.
This view organizes weaknesses around concepts that are frequently used or encountered in software development. This includes all aspects of the software development l...