ByteOS Network

CWE CATEGORY:OWASP Top Ten 2007 Category A6 - Information Leakage and Improper Error Handling

Category ID:717

Vulnerability Mapping:Prohibited

Status:Obsolete

Details Content History Observed CVE Examples Reports

▼Summary

Weaknesses in this category are related to the A6 category in the OWASP Top Ten 2007.

▼Membership

Nature	Mapping	Type	ID	Name
MemberOf	Prohibited	V	629	Weaknesses in OWASP Top Ten (2007)
HasMember	Discouraged	C	200	Exposure of Sensitive Information to an Unauthorized Actor
HasMember	Allowed	B	203	Observable Discrepancy
HasMember	Allowed	B	209	Generation of Error Message Containing Sensitive Information
HasMember	Allowed	B	215	Insertion of Sensitive Information Into Debugging Code

Nature: MemberOf

Mapping: Prohibited

Type: View

ID: 629

Name: Weaknesses in OWASP Top Ten (2007)

Nature: HasMember

Mapping: Discouraged

Type: Class

ID: 200

Name: Exposure of Sensitive Information to an Unauthorized Actor

Nature: HasMember

Mapping: Allowed

Type: Base

ID: 203

Name: Observable Discrepancy

Nature: HasMember

Mapping: Allowed

Type: Base

ID: 209

Name: Generation of Error Message Containing Sensitive Information

Nature: HasMember

Mapping: Allowed

Type: Base

ID: 215

Name: Insertion of Sensitive Information Into Debugging Code

▼Vulnerability Mapping Notes

Usage:Prohibited

Rationale:

This entry is a Category. Using categories for mapping has been discouraged since 2019. Categories are informal organizational groupings of weaknesses that can help CWE users with data aggregation, navigation, and browsing. However, they are not weaknesses in themselves.

Comments:

See member weaknesses of this category.

▼References

Reference ID: REF-575

Title: Top 10 2007-Information Leakage and Improper Error Handling

Version: v4.15

Author: OWASP

Publication:

URL:http://www.owasp.org/index.php/Top_10_2007-A6

Day:N/A

Month:N/A

Year:2007