| HasMember | Discouraged | C | 114 | Process Control |
| HasMember | Allowed-with-Review | C | 116 | Improper Encoding or Escaping of Output |
| HasMember | Allowed | B | 117 | Improper Output Neutralization for Logs |
| HasMember | Discouraged | C | 119 | Improper Restriction of Operations within the Bounds of a Memory Buffer |
| HasMember | Allowed | B | 1191 | On-Chip Debug and Test Interface With Improper Access Control |
| HasMember | Allowed-with-Review | B | 120 | Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') |
| HasMember | Allowed | V | 121 | Stack-based Buffer Overflow |
| HasMember | Allowed | V | 122 | Heap-based Buffer Overflow |
| HasMember | Allowed | B | 1220 | Insufficient Granularity of Access Control |
| HasMember | Allowed | B | 123 | Write-what-where Condition |
| HasMember | Allowed | B | 1236 | Improper Neutralization of Formula Elements in a CSV File |
| HasMember | Allowed | B | 124 | Buffer Underwrite ('Buffer Underflow') |
| HasMember | Allowed | B | 1242 | Inclusion of Undocumented Features or Chicken Bits |
| HasMember | Allowed | B | 1247 | Improper Protection Against Voltage and Clock Glitches |
| HasMember | Allowed | B | 1252 | CPU Hardware Not Configured to Support Exclusivity of Write and Execute Operations |
| HasMember | Allowed | B | 1253 | Incorrect Selection of Fuse Values |
| HasMember | Allowed | V | 1255 | Comparison Logic is Vulnerable to Power Side-Channel Attacks |
| HasMember | Allowed | B | 1259 | Improper Restriction of Security Token Assignment |
| HasMember | Allowed | B | 1267 | Policy Uses Obsolete Encoding |
| HasMember | Allowed | B | 1268 | Policy Privileges are not Assigned Consistently Between Control and Data Agents |
| HasMember | Allowed | B | 1270 | Generation of Incorrect Security Tokens |
| HasMember | Allowed | B | 1273 | Device Unlock Credential Sharing |
| HasMember | Allowed | B | 1274 | Improper Access Control for Volatile Memory Containing Boot Code |
| HasMember | Allowed | B | 1277 | Firmware Not Updateable |
| HasMember | Allowed | B | 128 | Wrap-around Error |
| HasMember | Allowed | V | 129 | Improper Validation of Array Index |
| HasMember | Allowed | B | 1290 | Incorrect Decoding of Security Identifiers |
| HasMember | Allowed | B | 1291 | Public Key Re-Use for Signing both Debug and Production Code |
| HasMember | Allowed | B | 1292 | Incorrect Conversion of Security Identifiers |
| HasMember | Allowed-with-Review | C | 1294 | Insecure Security Identifier Mechanism |
| HasMember | Allowed | B | 1296 | Incorrect Chaining or Granularity of Debug Components |
| HasMember | Allowed | B | 1297 | Unprotected Confidential Information on Device is Accessible by OSAT Vendors |
| HasMember | Allowed | B | 1299 | Missing Protection Mechanism for Alternate Hardware Interface |
| HasMember | Allowed | B | 1302 | Missing Source Identifier in Entity Transactions on a System-On-Chip (SOC) |
| HasMember | Allowed | B | 131 | Incorrect Calculation of Buffer Size |
| HasMember | Allowed | B | 1311 | Improper Translation of Security Attributes by Fabric Bridge |
| HasMember | Allowed | B | 1313 | Hardware Allows Activation of Test or Debug Logic at Runtime |
| HasMember | Allowed | B | 1319 | Improper Protection against Electromagnetic Fault Injection (EM-FI) |
| HasMember | Allowed | B | 1326 | Missing Immutable Root of Trust in Hardware |
| HasMember | Allowed | B | 1329 | Reliance on Component That is Not Updateable |
| HasMember | Allowed | B | 1336 | Improper Neutralization of Special Elements Used in a Template Engine |
| HasMember | Allowed | B | 1339 | Insufficient Precision or Accuracy of a Real Number |
| HasMember | Allowed | B | 134 | Use of Externally-Controlled Format String |
| HasMember | Allowed | B | 1342 | Information Exposure through Microarchitectural State after Transient Execution |
| HasMember | Allowed | B | 135 | Incorrect Calculation of Multi-Byte String Length |
| HasMember | Discouraged | C | 138 | Improper Neutralization of Special Elements |
| HasMember | Allowed-with-Review | C | 1390 | Weak Authentication |
| HasMember | Discouraged | B | 1426 | Improper Validation of Generative AI Output |
| HasMember | Allowed | B | 1427 | Improper Neutralization of Input Used for LLM Prompting |
| HasMember | Allowed | V | 146 | Improper Neutralization of Expression/Command Delimiters |
| HasMember | Allowed | B | 170 | Improper Null Termination |
| HasMember | Allowed | V | 174 | Double Decoding of the Same Data |
| HasMember | Allowed | B | 179 | Incorrect Behavior Order: Early Validation |
| HasMember | Allowed | B | 190 | Integer Overflow or Wraparound |
| HasMember | Allowed | B | 191 | Integer Underflow (Wrap or Wraparound) |
| HasMember | Allowed | V | 192 | Integer Coercion Error |
| HasMember | Allowed | B | 193 | Off-by-one Error |
| HasMember | Allowed | V | 196 | Unsigned to Signed Conversion Error |
| HasMember | Discouraged | C | 20 | Improper Input Validation |
| HasMember | Allowed | B | 22 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') |
| HasMember | Allowed | B | 23 | Relative Path Traversal |
| HasMember | Discouraged | V | 234 | Failure to Handle Missing Parameter |
| HasMember | Allowed | B | 250 | Execution with Unnecessary Privileges |
| HasMember | Discouraged | C | 287 | Improper Authentication |
| HasMember | Allowed | B | 296 | Improper Following of a Certificate's Chain of Trust |
| HasMember | Allowed | B | 304 | Missing Critical Step in Authentication |
| HasMember | Allowed | B | 347 | Improper Verification of Cryptographic Signature |
| HasMember | Allowed | B | 36 | Absolute Path Traversal |
| HasMember | Allowed | B | 360 | Trust of System Event Data |
| HasMember | Allowed-with-Review | C | 362 | Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') |
| HasMember | Allowed | B | 364 | Signal Handler Race Condition |
| HasMember | Allowed | V | 39 | Path Traversal: 'C:dirname' |
| HasMember | Allowed | V | 415 | Double Free |
| HasMember | Allowed | V | 416 | Use After Free |
| HasMember | Allowed | B | 425 | Direct Request ('Forced Browsing') |
| HasMember | Allowed-with-Review | B | 426 | Untrusted Search Path |
| HasMember | Allowed-with-Review | B | 427 | Uncontrolled Search Path Element |
| HasMember | Allowed | B | 428 | Unquoted Search Path or Element |
| HasMember | Allowed | B | 434 | Unrestricted Upload of File with Dangerous Type |
| HasMember | Allowed-with-Review | C | 441 | Unintended Proxy or Intermediary ('Confused Deputy') |
| HasMember | Allowed | B | 469 | Use of Pointer Subtraction to Determine Size |
| HasMember | Allowed | B | 470 | Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') |
| HasMember | Allowed | B | 476 | NULL Pointer Dereference |
| HasMember | Allowed | V | 479 | Signal Handler Use of a Non-reentrant Function |
| HasMember | Allowed | V | 486 | Comparison of Classes by Name |
| HasMember | Allowed | B | 494 | Download of Code Without Integrity Check |
| HasMember | Allowed-with-Review | C | 506 | Embedded Malicious Code |
| HasMember | Allowed | B | 507 | Trojan Horse |
| HasMember | Allowed | B | 508 | Non-Replicating Malicious Code |
| HasMember | Allowed | B | 509 | Replicating Malicious Code (Virus or Worm) |
| HasMember | Allowed | B | 510 | Trapdoor |
| HasMember | Allowed | V | 553 | Command Shell in Externally Accessible Directory |
| HasMember | Allowed | B | 562 | Return of Stack Variable Address |
| HasMember | Allowed | B | 565 | Reliance on Cookies without Validation and Integrity Checking |
| HasMember | Allowed | V | 578 | EJB Bad Practices: Use of Class Loader |
| HasMember | Allowed | V | 583 | finalize() Method Declared Public |
| HasMember | Allowed | V | 587 | Assignment of a Fixed Address to a Pointer |
| HasMember | Allowed | B | 59 | Improper Link Resolution Before File Access ('Link Following') |
| HasMember | Allowed | V | 590 | Free of Memory not on the Heap |
| HasMember | Allowed | V | 623 | Unsafe ActiveX Control Marked Safe For Scripting |
| HasMember | Allowed | B | 624 | Executable Regular Expression Error |
| HasMember | Allowed | V | 627 | Dynamic Variable Evaluation |
| HasMember | Allowed-with-Review | C | 638 | Not Using Complete Mediation |
| HasMember | Allowed | B | 641 | Improper Restriction of Names for Files and Other Resources |
| HasMember | Allowed | V | 644 | Improper Neutralization of HTTP Headers for Scripting Syntax |
| HasMember | Allowed | B | 648 | Incorrect Use of Privileged APIs |
| HasMember | Discouraged | C | 680 | Integer Overflow to Buffer Overflow |
| HasMember | Discouraged | P | 682 | Incorrect Calculation |
| HasMember | Discouraged | C | 690 | Unchecked Return Value to NULL Pointer Dereference |
| HasMember | Discouraged | C | 692 | Incomplete Denylist to Cross-Site Scripting |
| HasMember | Allowed | B | 698 | Execution After Redirect (EAR) |
| HasMember | Allowed | B | 73 | External Control of File Name or Path |
| HasMember | Allowed | B | 749 | Exposed Dangerous Method or Function |
| HasMember | Discouraged | C | 75 | Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) |
| HasMember | Allowed | V | 761 | Free of Pointer not at Start of Buffer |
| HasMember | Allowed | V | 762 | Mismatched Memory Management Routines |
| HasMember | Allowed | B | 763 | Release of Invalid Pointer or Reference |
| HasMember | Allowed-with-Review | C | 77 | Improper Neutralization of Special Elements used in a Command ('Command Injection') |
| HasMember | Allowed | B | 78 | Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') |
| HasMember | Allowed | V | 781 | Improper Address Validation in IOCTL with METHOD_NEITHER I/O Control Code |
| HasMember | Allowed | V | 785 | Use of Path Manipulation Function without Maximum-sized Buffer |
| HasMember | Discouraged | B | 786 | Access of Memory Location Before Start of Buffer |
| HasMember | Allowed | B | 787 | Out-of-bounds Write |
| HasMember | Discouraged | B | 788 | Access of Memory Location After End of Buffer |
| HasMember | Allowed | B | 79 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') |
| HasMember | Allowed | B | 798 | Use of Hard-coded Credentials |
| HasMember | Allowed | V | 80 | Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) |
| HasMember | Allowed | B | 805 | Buffer Access with Incorrect Length Value |
| HasMember | Allowed | V | 806 | Buffer Access Using Size of Source Buffer |
| HasMember | Allowed | V | 81 | Improper Neutralization of Script in an Error Message Web Page |
| HasMember | Allowed | V | 82 | Improper Neutralization of Script in Attributes of IMG Tags in a Web Page |
| HasMember | Allowed | B | 822 | Untrusted Pointer Dereference |
| HasMember | Allowed | B | 823 | Use of Out-of-range Pointer Offset |
| HasMember | Allowed | B | 824 | Access of Uninitialized Pointer |
| HasMember | Allowed | B | 825 | Expired Pointer Dereference |
| HasMember | Allowed | B | 826 | Premature Release of Resource During Expected Lifetime |
| HasMember | Allowed | V | 827 | Improper Control of Document Type Definition |
| HasMember | Allowed | V | 828 | Signal Handler with Functionality that is not Asynchronous-Safe |
| HasMember | Allowed | B | 829 | Inclusion of Functionality from Untrusted Control Sphere |
| HasMember | Allowed | V | 83 | Improper Neutralization of Script in Attributes in a Web Page |
| HasMember | Allowed | V | 830 | Inclusion of Web Functionality from an Untrusted Source |
| HasMember | Allowed | V | 831 | Signal Handler Function Associated with Multiple Signals |
| HasMember | Allowed | B | 832 | Unlock of a Resource that is not Locked |
| HasMember | Allowed | B | 838 | Inappropriate Encoding for Output Context |
| HasMember | Allowed | B | 839 | Numeric Range Comparison Without Minimum Check |
| HasMember | Allowed | B | 843 | Access of Resource Using Incompatible Type ('Type Confusion') |
| HasMember | Allowed | V | 85 | Doubled Character XSS Manipulations |
| HasMember | Allowed | V | 86 | Improper Neutralization of Invalid Characters in Identifiers in Web Pages |
| HasMember | Allowed-with-Review | C | 863 | Incorrect Authorization |
| HasMember | Allowed | V | 87 | Improper Neutralization of Alternate XSS Syntax |
| HasMember | Allowed | B | 88 | Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') |
| HasMember | Allowed | B | 89 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') |
| HasMember | Allowed | B | 90 | Improper Neutralization of Special Elements used in an LDAP Query ('LDAP Injection') |
| HasMember | Allowed | B | 91 | XML Injection (aka Blind XPath Injection) |
| HasMember | Allowed-with-Review | C | 913 | Improper Control of Dynamically-Managed Code Resources |
| HasMember | Allowed | B | 914 | Improper Control of Dynamically-Identified Variables |
| HasMember | Allowed | B | 915 | Improperly Controlled Modification of Dynamically-Determined Object Attributes |
| HasMember | Allowed | B | 917 | Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection') |
| HasMember | Allowed | B | 918 | Server-Side Request Forgery (SSRF) |
| HasMember | Allowed-with-Review | B | 94 | Improper Control of Generation of Code ('Code Injection') |
| HasMember | Allowed | V | 942 | Permissive Cross-domain Policy with Untrusted Domains |
| HasMember | Allowed | V | 95 | Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection') |
| HasMember | Allowed | B | 96 | Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection') |
| HasMember | Allowed | V | 97 | Improper Neutralization of Server-Side Includes (SSI) Within a Web Page |
| HasMember | Allowed | V | 98 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') |