CWE-1029
OWASP Top Ten 2017 Category A3 - Sensitive Data Exposure
Incomplete
2018-03-29 +00:00
2023-06-29 +00:00
Notifications for a CWE
Stay informed of any changes for a specific CWE.
Name: OWASP Top Ten 2017 Category A3 - Sensitive Data Exposure
Weaknesses in this category are related to the A3 category in the OWASP Top Ten 2017.
CWE Members List
CWE-320: Key Management Errors Category
CWE Informations
Vulnerability Mapping Notes
Justification : This entry is a Category. Using categories for mapping has been discouraged since 2019. Categories are informal organizational groupings of weaknesses that can help CWE users with data aggregation, navigation, and browsing. However, they are not weaknesses in themselves.Comment : See member weaknesses of this category.
Submission
| Name | Organization | Date | Date release | Version |
|---|---|---|---|---|
| CWE Content Team | MITRE | 3.1 |
Modifications
| Name | Organization | Date | Comment |
|---|---|---|---|
| CWE Content Team | MITRE | updated References | |
| CWE Content Team | MITRE | updated Mapping_Notes | |
| CWE Content Team | MITRE | updated Mapping_Notes |
References
REF-957
Top 10 2017https://owasp.org/www-pdf-archive/OWASP_Top_10-2017_%28en%29.pdf.pdf
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.