| Submission Date | Release Date | Submitter | Organization | Version | Comment |
|---|---|---|---|---|---|
| 2006-07-19 | 2006-07-19 | 7 Pernicious Kingdoms | N/A | Draft 3 | N/A |
Submission Date: 2006-07-19
Release Date: 2006-07-19
Submitter: 7 Pernicious Kingdoms
Organization: N/A
Version: Draft 3
Comment:
N/A
| Modification Date | Release Date | Modifier | Organization | Version | Importance | Comment |
|---|---|---|---|---|---|---|
| 2020-12-10 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Relationships |
| 2008-07-01 | N/A | Eric Dalci | Cigital | N/A | N/A | updated Time_of_Introduction |
| 2008-08-15 | N/A | N/A | Veracode | N/A | N/A | Suggested OWASP Top Ten 2004 mapping |
| 2008-09-08 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Common_Consequences, Relationships, Other_Notes, Taxonomy_Mappings, Weakness_Ordinalities |
| 2009-05-27 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Demonstrative_Examples, Name |
| 2009-07-27 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Demonstrative_Examples, Description, Name |
| 2009-10-29 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Common_Consequences, Description, Other_Notes, Potential_Mitigations |
| 2010-02-16 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Potential_Mitigations, Relationships |
| 2010-06-21 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Description, Name |
| 2011-03-29 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Demonstrative_Examples |
| 2011-06-01 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Common_Consequences |
| 2012-05-11 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Common_Consequences, Demonstrative_Examples, References, Related_Attack_Patterns, Relationships |
| 2012-10-30 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Potential_Mitigations |
| 2013-02-21 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Relationships |
| 2013-07-17 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Relationships |
| 2014-02-18 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Applicable_Platforms, Demonstrative_Examples, Description, Other_Notes, Terminology_Notes |
| 2014-06-23 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Relationships |
| 2014-07-30 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Relationships, Taxonomy_Mappings |
| 2015-12-07 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Demonstrative_Examples, Relationships |
| 2017-05-03 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Potential_Mitigations, Related_Attack_Patterns, Relationships |
| 2017-11-08 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Causal_Nature, Likelihood_of_Exploit, Modes_of_Introduction, References, Relationships, Taxonomy_Mappings |
| 2018-03-27 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Relationships |
| 2019-01-03 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Taxonomy_Mappings |
| 2019-06-20 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Related_Attack_Patterns, Relationships |
| 2020-02-24 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Potential_Mitigations, References, Relationships |
| 2020-06-25 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Potential_Mitigations |
| 2020-08-20 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Relationships |
| 2021-03-15 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Relationships |
| 2021-07-20 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Description, Observed_Examples, Relationships |
| 2021-10-28 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Relationships |
| 2022-06-28 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Observed_Examples, Relationships |
| 2022-10-13 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Observed_Examples, References, Terminology_Notes |
| 2023-01-31 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Description, Potential_Mitigations |
| 2023-04-27 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Detection_Factors, Relationships, Time_of_Introduction |
| 2023-06-29 | N/A | CWE Content Team | MITRE | N/A | N/A | updated Mapping_Notes, Relationships |
| 2024-07-16 | 2024-07-16 | CWE Content Team | MITRE | 4.15 | N/A | updated Alternate_Terms, Applicable_Platforms, Common_Consequences, Demonstrative_Examples, Description, Diagram, Mapping_Notes, Modes_of_Introduction, Observed_Examples, Other_Notes, Terminology_Notes |
| 2024-11-19 | 2024-11-19 | CWE Content Team | MITRE | 4.16 | N/A | updated Demonstrative_Examples, Relationships |
Modification Date: 2020-12-10
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Relationships
Modification Date: 2008-07-01
Release Date: N/A
Modifier: Eric Dalci
Organization: Cigital
Version: N/A
Importance: N/A
Comment:
updated Time_of_Introduction
Modification Date: 2008-08-15
Release Date: N/A
Modifier: N/A
Organization: Veracode
Version: N/A
Importance: N/A
Comment:
Suggested OWASP Top Ten 2004 mapping
Modification Date: 2008-09-08
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Common_Consequences, Relationships, Other_Notes, Taxonomy_Mappings, Weakness_Ordinalities
Modification Date: 2009-05-27
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Demonstrative_Examples, Name
Modification Date: 2009-07-27
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Demonstrative_Examples, Description, Name
Modification Date: 2009-10-29
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Common_Consequences, Description, Other_Notes, Potential_Mitigations
Modification Date: 2010-02-16
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Potential_Mitigations, Relationships
Modification Date: 2010-06-21
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Description, Name
Modification Date: 2011-03-29
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Demonstrative_Examples
Modification Date: 2011-06-01
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Common_Consequences
Modification Date: 2012-05-11
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Common_Consequences, Demonstrative_Examples, References, Related_Attack_Patterns, Relationships
Modification Date: 2012-10-30
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Potential_Mitigations
Modification Date: 2013-02-21
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Relationships
Modification Date: 2013-07-17
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Relationships
Modification Date: 2014-02-18
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Applicable_Platforms, Demonstrative_Examples, Description, Other_Notes, Terminology_Notes
Modification Date: 2014-06-23
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Relationships
Modification Date: 2014-07-30
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Relationships, Taxonomy_Mappings
Modification Date: 2015-12-07
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Demonstrative_Examples, Relationships
Modification Date: 2017-05-03
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Potential_Mitigations, Related_Attack_Patterns, Relationships
Modification Date: 2017-11-08
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Causal_Nature, Likelihood_of_Exploit, Modes_of_Introduction, References, Relationships, Taxonomy_Mappings
Modification Date: 2018-03-27
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Relationships
Modification Date: 2019-01-03
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Taxonomy_Mappings
Modification Date: 2019-06-20
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Related_Attack_Patterns, Relationships
Modification Date: 2020-02-24
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Potential_Mitigations, References, Relationships
Modification Date: 2020-06-25
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Potential_Mitigations
Modification Date: 2020-08-20
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Relationships
Modification Date: 2021-03-15
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Relationships
Modification Date: 2021-07-20
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Description, Observed_Examples, Relationships
Modification Date: 2021-10-28
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Relationships
Modification Date: 2022-06-28
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Observed_Examples, Relationships
Modification Date: 2022-10-13
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Observed_Examples, References, Terminology_Notes
Modification Date: 2023-01-31
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Description, Potential_Mitigations
Modification Date: 2023-04-27
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Detection_Factors, Relationships, Time_of_Introduction
Modification Date: 2023-06-29
Release Date: N/A
Modifier: CWE Content Team
Organization: MITRE
Version: N/A
Importance: N/A
Comment:
updated Mapping_Notes, Relationships
Modification Date: 2024-07-16
Release Date: 2024-07-16
Modifier: CWE Content Team
Organization: MITRE
Version: 4.15
Importance: N/A
Comment:
updated Alternate_Terms, Applicable_Platforms, Common_Consequences, Demonstrative_Examples, Description, Diagram, Mapping_Notes, Modes_of_Introduction, Observed_Examples, Other_Notes, Terminology_Notes
Modification Date: 2024-11-19
Release Date: 2024-11-19
Modifier: CWE Content Team
Organization: MITRE
Version: 4.16
Importance: N/A
Comment:
updated Demonstrative_Examples, Relationships
| Contributor Date | Release Date | Type | Contributor | Organization | Version | Comment |
|---|---|---|---|---|---|---|
| 2022-05-20 | N/A | Feedback | Anonymous External Contributor | N/A | N/A | reported typo in Terminology note |
| 2024-02-29 | 2024-07-16 | Content | Abhi Balakrishnan | N/A | 4.15 | Provided diagram to improve CWE usability |
| 2024-07-01 | 2024-07-16 | Content | Eldar Marcussen | N/A | 4.15 | Suggested that CWE-77 should include more examples than CWE-78. |
Contributor Date: 2022-05-20
Release Date: N/A
Type: Feedback
Contributor: Anonymous External Contributor
Organization: N/A
Version: N/A
Comment:
reported typo in Terminology note
Contributor Date: 2024-02-29
Release Date: 2024-07-16
Type: Content
Contributor: Abhi Balakrishnan
Organization: N/A
Version: 4.15
Comment:
Provided diagram to improve CWE usability
Contributor Date: 2024-07-01
Release Date: 2024-07-16
Type: Content
Contributor: Eldar Marcussen
Organization: N/A
Version: 4.15
Comment:
Suggested that CWE-77 should include more examples than CWE-78.
| Change Date | Previous Entry Name | Version |
|---|---|---|
| 2008-04-11 | Command Injection | N/A |
| 2009-05-27 | Failure to Sanitize Data into a Control Plane (aka 'Command Injection') | N/A |
| 2009-07-27 | Failure to Sanitize Data into a Control Plane ('Command Injection') | N/A |
| 2010-06-21 | Improper Sanitization of Special Elements used in a Command ('Command Injection') | N/A |
Change Date: 2008-04-11
Version: N/A
Previous Entry Name: Command Injection
Change Date: 2009-05-27
Version: N/A
Previous Entry Name: Failure to Sanitize Data into a Control Plane (aka 'Command Injection')
Change Date: 2009-07-27
Version: N/A
Previous Entry Name: Failure to Sanitize Data into a Control Plane ('Command Injection')
Change Date: 2010-06-21
Version: N/A
Previous Entry Name: Improper Sanitization of Special Elements used in a Command ('Command Injection')