Category-945: SFP Secondary Cluster: Insecure Resource Access

admin

101085
文章

87
评论

2021年11月13日03:14:48评论28 views字数 430阅读1分26秒阅读模式

Category-945: SFP Secondary Cluster: Insecure Resource Access

ID: 945
Status: Incomplete

Summary

This category identifies Software Fault Patterns (SFPs) within the Insecure Resource Access cluster.

Membership

ID	NAME
CWE-285	授权机制不恰当
CWE-424	对候选路径的不恰当保护
CWE-639	通过用户控制密钥绕过授权机制
CWE-650	在服务器端信任HTTP权限模型

文章来源于互联网:scap中文网

相关推荐: CWE-1084 具有过多文件或数据访问操作的可调用控件元素

CWE-1084 具有过多文件或数据访问操作的可调用控件元素 Invokable Control Element with Excessive File or Data Access Operations 结构: Simple Abstraction: Bas…

左青龙
微信扫一扫

右白虎
微信扫一扫

本文由 admin 发表于 2021年11月13日03:14:48
转载请保留本文链接(CN-SEC中文网:感谢原作者辛苦付出)：
Category-945: SFP Secondary Cluster: Insecure Resource Accesshttps://cn-sec.com/archives/613489.html

在线咨询

13688888888

8888 QQ在线咨询

微信
本页二维码

Category-945: SFP Secondary Cluster: Insecure Resource Access

Category-945: SFP Secondary Cluster: Insecure Resource Access

Summary

Membership

View-999: Weaknesses without Software Fault Patterns

View-884: CWE Cross-section

View-868: Weaknesses Addressed by the SEI CERT C++ Coding Standard (2016 Version)

View-844: Weaknesses Addressed by The CERT Oracle Secure Coding Standard for Java (2011)

View-809: Weaknesses in OWASP Top Ten (2010)

View-800: Weaknesses in the 2010 CWE/SANS Top 25 Most Dangerous Programming Errors

View-750: Weaknesses in the 2009 CWE/SANS Top 25 Most Dangerous Programming Errors

View-734: Weaknesses Addressed by the CERT C Secure Coding Standard (2008)

View-711: Weaknesses in OWASP Top Ten (2004)

View-709: Named Chains

发表评论

在线咨询

微信