Common Weakness Enumeration
CWE is a catalog of software and hardware weakness types, like buffer overflows or SQL injection, maintained by MITRE. While a CVE names one specific bug, a CWE names the underlying class of mistake that caused it. It matters because tracking weaknesses by category helps teams fix root causes and prevent whole families of future vulnerabilities.