CWE by View – Software Weaknesses by Perspective

Vendors and Products

CPE, which stands for Common Platform Enumeration, is a standardized scheme for naming hardware, software, and operating systems. CPE provides a structured naming scheme to uniquely identify and classify information technology systems, platforms, and packages based on certain attributes such as vendor, product name, version, update, edition, and language.

CWE entries by views (criticality, architecture, secure coding, ...)

This page displays CWE (Common Weakness Enumeration) software weaknesses organized by views. Each view offers a different way to analyze vulnerabilities—by abstraction level, technical domain, or secure development goal. This structure helps navigate the vulnerability database, link CWE entries to CVEs and CAPEC patterns, and identify high-impact weaknesses.

Notifications on CWE

Stay informed of any changes or new CWEs.

Notifications manage


ID	Published Modified	Name Objective	Type	Status

The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.

CWE Views – Perspectives for Classifying Weaknesses

CWE entries by views (criticality, architecture, secure coding, ...)