View-699: Development Concepts

admin
admin
admin
140350
文章
117
评论
2022年1月14日11:42:44评论52 views字数 1135阅读3分47秒阅读模式

View-699: Development Concepts

ID: 699

Type: Graph

Status: Incomplete

Objective

This view organizes weaknesses around concepts that are frequently used or encountered in software development. Accordingly, this view can align closely with the perspectives of developers, educators, and assessment vendors. It provides a variety of categories that are intended to simplify navigation, browsing, and mapping.

Audience

Software Developers

Software developers use this view to better understand potential mistakes that can be made in specific areas of their code. The use of concepts that developers are familiar with makes it easier to navigate.

Educators

Educators use this view to teach future developers about the types of mistakes that are commonly made within specific parts of a codebase.

Membership

CWE-ID title
CWE-16 配置
CWE-19 数据处理错误
CWE-21 路径名遍历和等值错误
CWE-189 数值错误
CWE-254 7PK-安全功能
CWE-361 7PK-时间和状态
CWE-389 错误条件、返回值、状态代码
CWE-399 资源管理错误
CWE-417 通道和路径错误
CWE-429 处理程序错误
CWE-438 行为问题
CWE-840 业务逻辑错误
CWE-442 网络问题
CWE-355 用户界面安全问题
CWE-452 初始化和清除错误
CWE-465 指针问题
CWE-490 移动代码问题
CWE-559 常见误用:形参和实参
CWE-569 表达问题
CWE-657 违背安全设计原则
CWE-1006 错误的编码做法

文章来源于互联网:scap中文网

相关推荐: View-709: Named Chains

View-709: Named Chains ID: 709 Type: Implicit Status: Incomplete Objective This view displays Named Chains and their components. M…

免责声明:文章中涉及的程序(方法)可能带有攻击性,仅供安全研究与教学之用,读者将其信息做其他用途,由读者承担全部法律及连带责任,本站不承担任何法律及连带责任;如有问题可邮件联系(建议使用企业邮箱或有效邮箱,避免邮件被拦截,联系方式见首页),望知悉。
  • 左青龙
  • 微信扫一扫
  • weinxin
  • 右白虎
  • 微信扫一扫
  • weinxin
admin
  • 本文由 发表于 2022年1月14日11:42:44
  • 转载请保留本文链接(CN-SEC中文网:感谢原作者辛苦付出):
                   View-699: Development Conceptshttps://cn-sec.com/archives/612538.html
                  免责声明:文章中涉及的程序(方法)可能带有攻击性,仅供安全研究与教学之用,读者将其信息做其他用途,由读者承担全部法律及连带责任,本站不承担任何法律及连带责任;如有问题可邮件联系(建议使用企业邮箱或有效邮箱,避免邮件被拦截,联系方式见首页),望知悉.

发表评论

匿名网友 填写信息