Common Weakness Enumeration (CWE™)
Quality Clouds' rules are based on and link to industry standards. CWE is one of these standards in the area of security.
Common Weakness Enumeration (CWE™) is a community-developed list of common software and hardware weakness types that have security ramifications.
Weaknesses are flaws, faults, bugs, vulnerabilities, or other errors in software or hardware implementation, code, design, or architecture that if left unaddressed could result in systems, networks, or hardware being vulnerable to attack.
The CWE List and associated classification taxonomy serve as a language that can be used to identify and describe these weaknesses in terms of CWEs.
CWE in Quality Clouds rules
Quality Clouds security rules link to the following CWE weaknesses: