ByteOS Network

CWE CATEGORY:SFP Secondary Cluster: Access Management

Category ID:944

Vulnerability Mapping:Prohibited

Status:Incomplete

Details Content History Observed CVE Examples Reports

▼Summary

This category identifies Software Fault Patterns (SFPs) within the Access Management cluster.

▼Membership

Nature	Mapping	Type	ID	Name
MemberOf	Prohibited	V	888	Software Fault Pattern (SFP) Clusters
HasMember	Allowed-with-Review	C	282	Improper Ownership Management
HasMember	Allowed	B	283	Unverified Ownership
HasMember	Discouraged	P	284	Improper Access Control
HasMember	Allowed-with-Review	C	286	Incorrect User Management
HasMember	Allowed	B	708	Incorrect Ownership Assignment

Nature: MemberOf

Mapping: Prohibited

Type: View

ID: 888

Name: Software Fault Pattern (SFP) Clusters

Nature: HasMember

Mapping: Allowed-with-Review

Type: Class

ID: 282

Name: Improper Ownership Management

Nature: HasMember

Mapping: Allowed

Type: Base

ID: 283

Name: Unverified Ownership

Nature: HasMember

Mapping: Discouraged

Type: Pillar

ID: 284

Name: Improper Access Control

Nature: HasMember

Mapping: Allowed-with-Review

Type: Class

ID: 286

Name: Incorrect User Management

Nature: HasMember

Mapping: Allowed

Type: Base

ID: 708

Name: Incorrect Ownership Assignment

▼Vulnerability Mapping Notes

Usage:Prohibited

Rationale:

This entry is a Category. Using categories for mapping has been discouraged since 2019. Categories are informal organizational groupings of weaknesses that can help CWE users with data aggregation, navigation, and browsing. However, they are not weaknesses in themselves.

Comments:

See member weaknesses of this category.