CWE-825 – Expired Pointer Dereference
Description The program dereferences a pointer that contains a location for memory that was previously valid, but is no longer valid. When a program releases...
CWE-826 – Premature Release of Resource During Expected Lifetime
Description The program releases a resource that is still intended to be used by the program itself or another actor. Modes of Introduction: Likelihood of...
CWE-827 – Improper Control of Document Type Definition
Description The software does not restrict a reference to a Document Type Definition (DTD) to the intended control sphere. This might allow attackers to reference...
CWE-828 – Signal Handler with Functionality that is not Asynchronous-Safe
Description The software defines a signal handler that contains code sequences that are not asynchronous-safe, i.e., the functionality is not reentrant, or it can be...
CWE-829 – Inclusion of Functionality from Untrusted Control Sphere
Description The software imports, requires, or includes executable functionality (such as a library) from a source that is outside of the intended control sphere. Modes...
CWE-83 – Improper Neutralization of Script in Attributes in a Web Page
Description The software does not neutralize or incorrectly neutralizes "javascript:" or other URIs from dangerous attributes within tags, such as onmouseover, onload, onerror, or style....
CWE-830 – Inclusion of Web Functionality from an Untrusted Source
Description The software includes web functionality (such as a web widget) from another domain, which causes it to operate within the domain of the software,...
CWE-831 – Signal Handler Function Associated with Multiple Signals
Description The software defines a function that is used as a handler for more than one signal. Modes of Introduction: Likelihood of Exploit: Related...
CWE-832 – Unlock of a Resource that is not Locked
Description The software attempts to unlock a resource that is not locked. Depending on the locking functionality, an unlock of a non-locked resource might cause...
CWE-833 – Deadlock
Description The software contains multiple threads or executable segments that are waiting for each other to release a necessary lock, resulting in deadlock. Modes of...