CWE-833 – Deadlock
Description The software contains multiple threads or executable segments that are waiting for each other to release a necessary lock, resulting in deadlock. Modes of...
CWE-834 – Excessive Iteration
Description The software performs an iteration or loop without sufficiently limiting the number of times that the loop is executed. If the iteration can be...
CWE-835 – Loop with Unreachable Exit Condition (‘Infinite Loop’)
Description The program contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop. If the loop can be...
CWE-786 – Access of Memory Location Before Start of Buffer
Description The software reads or writes to a buffer using an index or pointer that references a memory location prior to the beginning of the...
CWE-787 – Out-of-bounds Write
Description The software writes data past the end, or before the beginning, of the intended buffer. Typically, this can result in corruption of data, a...
CWE-788 – Access of Memory Location After End of Buffer
Description The software reads or writes to a buffer using an index or pointer that references a memory location after the end of the buffer....
CWE-789 – Memory Allocation with Excessive Size Value
Description The product allocates memory based on an untrusted, large size value, but it does not ensure that the size is within expected limits, allowing...
CWE-79 – Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’)
Description The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that...
CWE-790 – Improper Filtering of Special Elements
Description The software receives data from an upstream component, but does not filter or incorrectly filters special elements before sending it to a downstream component....
CWE-791 – Incomplete Filtering of Special Elements
Description The software receives data from an upstream component, but does not completely filter special elements before sending it to a downstream component. Modes of...