CWE-815 Categorie Detail

CWE-815

OWASP Top Ten 2010 Category A6 - Security Misconfiguration
Obsolete
2010-06-21 +00:00
2023-06-29 +00:00
CWE Mitre.org
Notifications for a CWE
Stay informed of any changes for a specific CWE.
Notifications manage

Name: OWASP Top Ten 2010 Category A6 - Security Misconfiguration

Weaknesses in this category are related to the A6 category in the OWASP Top Ten 2010.

CWE Members List

CWE-209: Generation of Error Message Containing Sensitive Information Base

CWE-219: Storage of File with Sensitive Data Under Web Root Base

CWE-250: Execution with Unnecessary Privileges Base

CWE-538: Insertion of Sensitive Information into Externally-Accessible File or Directory Base

CWE-552: Files or Directories Accessible to External Parties Base

CWE-732: Incorrect Permission Assignment for Critical Resource Base

CWE Informations

Vulnerability Mapping Notes

Justification : This entry is a Category. Using categories for mapping has been discouraged since 2019. Categories are informal organizational groupings of weaknesses that can help CWE users with data aggregation, navigation, and browsing. However, they are not weaknesses in themselves.
Comment : See member weaknesses of this category.

Submission

Name Organization Date Date release Version
CWE Content Team MITRE 2010-06-17 +00:00 2010-06-21 +00:00 1.9

Modifications

Name Organization Date Comment
CWE Content Team MITRE 2010-09-27 +00:00 updated Relationships
CWE Content Team MITRE 2011-09-13 +00:00 updated Relationships
CWE Content Team MITRE 2023-04-27 +00:00 updated Mapping_Notes
CWE Content Team MITRE 2023-06-29 +00:00 updated Mapping_Notes

References

REF-766

Top 10 2010-A6-Security Misconfiguration
OWASP.
http://www.owasp.org/index.php/Top_10_2010-A6-Security_Misconfiguration