CWE CATEGORY: OWASP Top Ten 2013 Category A9 - Using Components with Known VulnerabilitiesCategory ID: 937 Vulnerability Mapping:
PROHIBITEDThis CWE ID must not be used to map to real-world vulnerabilities
|
Summary Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013. Membership Vulnerability Mapping Notes Usage: PROHIBITED (this CWE ID must not be used to map to real-world vulnerabilities) | Reason: Category | Rationale: This entry is a Category. Using categories for mapping has been discouraged since 2019. Categories are informal organizational groupings of weaknesses that can help CWE users with data aggregation, navigation, and browsing. However, they are not weaknesses in themselves. | Comments: See member weaknesses of this category. |
Notes Relationship This is an unusual category. CWE does not cover the limitations of human processes and procedures that cannot be described in terms of a specific technical weakness as resident in the code, architecture, or configuration of the software. Since "known vulnerabilities" can arise from any kind of weakness, it is not possible to map this OWASP category to other CWE entries, since it would effectively require mapping this category to ALL weaknesses. References
More information is available — Please edit the custom filter or select a different filter.
|