Common Weakness Enumeration

A community-developed list of SW & HW weaknesses that

can become vulnerabilities

Home About ▼ CWE List ▼ Mapping ▼ Top-N Lists ▼ Community ▼ News ▼ Search

CWE CATEGORY: OWASP Top Ten 2013 Category A5 - Security Misconfiguration

Category ID: 933
Vulnerability Mapping: PROHIBITED

Summary
Weaknesses in this category are related to the A5 category in the OWASP Top Ten 2013.
Membership

Nature Type ID Name

MemberOf 928 Weaknesses in OWASP Top Ten (2013)
HasMember 2 7PK - Environment
HasMember 16 Configuration
HasMember 209 Generation of Error Message Containing Sensitive Information
HasMember 215 Insertion of Sensitive Information Into Debugging Code
HasMember 548 Exposure of Information Through Directory Listing

Vulnerability Mapping Notes

Usage: PROHIBITED (this CWE ID must not be used to map to real-world vulnerabilities)

Reason: Category

Rationale:

This entry is a Category. Using categories for mapping has been discouraged since 2019. Categories are informal
organizational groupings of weaknesses that can help CWE users with data aggregation, navigation, and browsing.
However, they are not weaknesses in themselves.
Comments:

See member weaknesses of this category.

References

[REF-932] OWASP. "Top 10 2013-A5-Security Misconfiguration". <https://www.owasp.org/index.php/Top_10_2013-A5-

Security_Misconfiguration>.

Content History

Submissions
Submission Date Submitter Organization
2013-07-16 CWE Content Team MITRE
(CWE 2.5, 2013-07-17)
Modifications