← Cybersecurity Alphabet Soup

CWE

Common Weakness Enumeration

operationsmedium

CWE is a catalog of software and hardware weakness types, like buffer overflows or SQL injection, maintained by MITRE. While a CVE names one specific bug, a CWE names the underlying class of mistake that caused it. It matters because tracking weaknesses by category helps teams fix root causes and prevent whole families of future vulnerabilities.

Sources

More in operations