This category identifies Software Fault Patterns (SFPs) within the Digital Certificate cluster.
| Nature | Mapping | Type | ID | Name |
|---|---|---|---|---|
| MemberOf | Prohibited | V | 888 | Software Fault Pattern (SFP) Clusters |
| HasMember | Allowed | B | 296 | Improper Following of a Certificate's Chain of Trust |
| HasMember | Allowed | V | 297 | Improper Validation of Certificate with Host Mismatch |
| HasMember | Allowed | V | 298 | Improper Validation of Certificate Expiration |
| HasMember | Allowed | B | 299 | Improper Check for Certificate Revocation |
| HasMember | Allowed | V | 593 | Authentication Bypass: OpenSSL CTX Object Modified after SSL Objects are Created |
| HasMember | Allowed | V | 599 | Missing Validation of OpenSSL Certificate |
This entry is a Category. Using categories for mapping has been discouraged since 2019. Categories are informal organizational groupings of weaknesses that can help CWE users with data aggregation, navigation, and browsing. However, they are not weaknesses in themselves.
See member weaknesses of this category.
| Taxonomy Name | Entry ID | Fit | Entry Name |
|---|