CWE-186 – Overly Restrictive Regular Expression
Description A regular expression is overly restrictive, which prevents dangerous values from being detected. This weakness is not about regular expression complexity. Rather, it is...
CWE-187 – Partial String Comparison
Description The software performs a comparison that only examines a portion of a factor before determining whether there is a match, such as a substring,...
CWE-188 – Reliance on Data/Memory Layout
Description The software makes invalid assumptions about how protocol data or memory is organized at a lower level, resulting in unintended program behavior. Modes of...
CWE-190 – Integer Overflow or Wraparound
Description The software performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be...
CWE-191 – Integer Underflow (Wrap or Wraparound)
Description The product subtracts one value from another, such that the result is less than the minimum allowable integer value, which produces a value that...
CWE-192 – Integer Coercion Error
Description Integer coercion refers to a set of flaws pertaining to the type casting, extension, or truncation of primitive data types. Several flaws fall under...
CWE-193 – Off-by-one Error
Description A product calculates or uses an incorrect maximum or minimum value that is 1 more, or 1 less, than the correct value. Modes of...
CWE-194 – Unexpected Sign Extension
Description The software performs an operation on a number that causes it to be sign extended when it is transformed into a larger data type....
CWE-195 – Signed to Unsigned Conversion Error
Description The software uses a signed primitive and performs a cast to an unsigned primitive, which can produce an unexpected value if the value of...
CWE-196 – Unsigned to Signed Conversion Error
Description The software uses an unsigned primitive and performs a cast to a signed primitive, which can produce an unexpected value if the value of...