Common Weakness Enumeration (CWE) - CI/CD Glossary Definition
CWE is a catalog of weakness categories that describe the root cause behind vulnerabilities.
CWE is a community-maintained catalog of software and hardware weakness types, such as CWE-79 for cross-site scripting, that classifies the underlying flaw behind vulnerabilities.
CWE is a catalog of weakness categories that describe the root cause behind vulnerabilities.
CWE vs CVE
A CVE names one specific vulnerability instance, while a CWE names the general class of weakness that caused it, so several CVEs can share a single CWE.
Related guides
CVE - CI/CD Glossary DefinitionCVE: A CVE (Common Vulnerabilities and Exposures) is a unique public identifier, formatted like CVE-2024-1234…
Vulnerability - CI/CD Glossary DefinitionVulnerability: A vulnerability is a weakness in software, configuration, or design that an attacker can explo…
Static Application Security Testing (SAST) - CI/CD Glossary DefinitionStatic Application Security Testing (SAST): SAST analyzes application source code, bytecode, or binaries with…