Vulnerability Management
Common Weakness Enumeration (CWE)
A taxonomy of software weakness types.
CWE categorizes software weaknesses by type (e.g., CWE-89: SQL Injection, CWE-79: XSS). Unlike CVEs which identify specific instances, CWEs describe the underlying weakness class. Used in vulnerability classification and security training.