CWE

Common Weakness Enumeration

A community-developed list of SW & HW weaknesses that can become vulnerabilities
New to CWE? click here!
CWE Most Important Hardware Weaknesses
CWE Top 25 Most Dangerous Weaknesses
Home > CWE List > Downloads  
ID

CWE List Version 4.16

Downloads



XML Content Published Schema Documentation
ZIP PDF XSD HTML

The following tables contains alternative formats for viewing the CWE List. The options are:

  • Booklet.html: A webpage containing the rendered HTML representation of the desired CWE ID, and all dependent Weaknesses, Views, or Categories.
  • CSV.zip: A compressed CSV file containing the fields of the desired Weaknesses related to this View.
  • XML.zip: A compressed XML file containing the desired CWE ID, dependent Weaknesses, Views, Categories, and all required External References.


Navigate CWE

Software Development Booklet.html CSV.zip XML.zip
Hardware Design Booklet.html CSV.zip XML.zip
Research Concepts Booklet.html CSV.zip XML.zip
Back to top

External Mappings

CWE Top 25 (2024) Booklet.html CSV.zip XML.zip
Most Important Hardware Weaknesses List (2021) Booklet.html CSV.zip XML.zip
OWASP Top Ten (2021) Booklet.html CSV.zip XML.zip
Seven Pernicious Kingdoms Booklet.html CSV.zip XML.zip
Software Fault Pattern Clusters Booklet.html CSV.zip XML.zip
SEI CERT Oracle Coding Standard for Java Booklet.html CSV.zip XML.zip
SEI CERT C Coding Standard Booklet.html CSV.zip XML.zip
SEI CERT Perl Coding Standard Booklet.html CSV.zip XML.zip
Addressed by ISA/IEC 62443 Requirements Booklet.html CSV.zip XML.zip
CISQ Quality Measures (2020) Booklet.html CSV.zip XML.zip
CISQ Data Protection Measures Booklet.html CSV.zip XML.zip
SEI ETF Security Vulnerabilities in ICS Booklet.html CSV.zip XML.zip
Architectural Concepts Booklet.html CSV.zip XML.zip
Back to top

Helpful Views

Introduced During Design Booklet.html CSV.zip XML.zip
Introduced During Implementation Booklet.html CSV.zip XML.zip
Software Assurance Trends Categorization Booklet.html CSV.zip XML.zip
Quality Weaknesses with Indirect Security Impacts Booklet.html CSV.zip XML.zip
Software Written in C Booklet.html CSV.zip XML.zip
Software Written in C++ Booklet.html CSV.zip XML.zip
Software Written in Java Booklet.html CSV.zip XML.zip
Software Written in PHP Booklet.html CSV.zip XML.zip
Weaknesses in Mobile Applications Booklet.html CSV.zip XML.zip
CWE Composites Booklet.html CSV.zip XML.zip
CWE Named Chains Booklet.html CSV.zip XML.zip
CWE Cross-Section Booklet.html CSV.zip XML.zip
CWE Simplified Mapping Booklet.html CSV.zip XML.zip
CWE Entries with Maintenance Notes Booklet.html CSV.zip XML.zip
CWE Deprecated Entries Booklet.html CSV.zip XML.zip
CWE Comprehensive View Booklet.html CSV.zip XML.zip
Weakness Base Elements Booklet.html CSV.zip XML.zip
Back to top

Obsolete Views

CWE Top 25 (2023) Booklet.html CSV.zip XML.zip
CWE Top 25 (2022) Booklet.html CSV.zip XML.zip
CWE Top 25 (2021) Booklet.html CSV.zip XML.zip
CWE Top 25 (2020) Booklet.html CSV.zip XML.zip
CWE Top 25 (2019) Booklet.html CSV.zip XML.zip
CWE/SANS Top 25 (2011) Booklet.html CSV.zip XML.zip
CWE/SANS Top 25 (2010) Booklet.html CSV.zip XML.zip
CWE/SANS Top 25 (2009) Booklet.html CSV.zip XML.zip
Weaknesses Used by NVD Booklet.html CSV.zip XML.zip
OWASP Top Ten (2017) Booklet.html CSV.zip XML.zip
OWASP Top Ten (2013) Booklet.html CSV.zip XML.zip
OWASP Top 10 (2010) Booklet.html CSV.zip XML.zip
OWASP Top 10 (2007) Booklet.html CSV.zip XML.zip
OWASP Top 10 (2004) Booklet.html CSV.zip XML.zip
The CERT C Secure Coding Standard (2008) Booklet.html CSV.zip XML.zip
The CERT Oracle Secure Coding Standard for Java (2011) Booklet.html CSV.zip XML.zip
SEI CERT C++ Coding Standard (2016) Booklet.html CSV.zip XML.zip
CISQ Quality Measures (2016) Booklet.html CSV.zip XML.zip
Back to top
Page Last Updated: February 29, 2024
 

Use of the Common Weakness Enumeration (CWE™) and the associated references from this website are subject to the Terms of Use. CWE is sponsored by the U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) and managed by the Homeland Security Systems Engineering and Development Institute (HSSEDI) which is operated by The MITRE Corporation (MITRE). Copyright © 2006–2024, The MITRE Corporation. CWE, CWSS, CWRAF, and the CWE logo are trademarks of The MITRE Corporation.