2010-01-11

New version of CWE

The CWE (Common Weakness Enumeration) version 1.7 has been posted on the CWE List page.

The Common Weakness Enumeration (CWE™) is a list of single vulnerability types
"It provides a common language of discourse for discussing, finding and dealing with the causes of software security vulnerabilities as they are found in code, design, or system architecture."

"International in scope and free for public use, CWE™ provides a unified, measurable set of software weaknesses that is enabling more effective discussion, description, selection, and use of software security tools and services that can find these weaknesses in source code and operational systems as well as better understanding and management of software weaknesses related to architecture and design."