CWE - CWE-880 - CERT C++ Secure Coding Section 12 - Exceptions and Error Handling (ERR) (4.15)

Uploaded by

vinaybhadeshiya6

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

62 views1 page

CWE - CWE-880 - CERT C++ Secure Coding Section 12 - Exceptions and Error Handling (ERR) (4.15)

Uploaded by

vinaybhadeshiya6

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 1

Common Weakness Enumeration

A community-developed list of SW & HW weaknesses that

can become vulnerabilities

Home About ▼ CWE List ▼ Mapping ▼ Top-N Lists ▼ Community ▼ News ▼ Search

CWE CATEGORY: CERT C++ Secure Coding Section 12 - Exceptions and Error Handling
(ERR)
Category ID: 880
Vulnerability Mapping: PROHIBITED

Summary
Weaknesses in this category are related to rules in the Exceptions and Error Handling (ERR) section of the CERT C++ Secure
Coding Standard. Since not all rules map to specific weaknesses, this category may be incomplete.
Membership

Nature Type ID Name

MemberOf 868 Weaknesses Addressed by the SEI CERT C++ Coding Standard (2016 Version)
HasMember 209 Generation of Error Message Containing Sensitive Information
HasMember 390 Detection of Error Condition Without Action
HasMember 391 Unchecked Error Condition
HasMember 460 Improper Cleanup on Thrown Exception
HasMember 497 Exposure of Sensitive System Information to an Unauthorized Control Sphere
HasMember 544 Missing Standardized Error Handling Mechanism
HasMember 703 Improper Check or Handling of Exceptional Conditions
HasMember 705 Incorrect Control Flow Scoping
HasMember 754 Improper Check for Unusual or Exceptional Conditions
HasMember 755 Improper Handling of Exceptional Conditions

Vulnerability Mapping Notes

Usage: PROHIBITED (this CWE ID must not be used to map to real-world vulnerabilities)

Reason: Category

Rationale:

This entry is a Category. Using categories for mapping has been discouraged since 2019. Categories are informal
organizational groupings of weaknesses that can help CWE users with data aggregation, navigation, and browsing.
However, they are not weaknesses in themselves.
Comments:

See member weaknesses of this category.

References

[REF-861] CERT. "12. Exceptions and Error Handling (ERR)".

<https://www.securecoding.cert.org/confluence/display/cplusplus/12.+Exceptions+and+Error+Handling+%28ERR%29>.

Content History

Submissions
Submission Date Submitter Organization
2011-08-04 CWE Content Team MITRE
(CWE 2.1, 2011-09-13)
Modifications

Data Processing Errors in CWE List
No ratings yet
Data Processing Errors in CWE List
1 page
CWE - CWE-722 - OWASP Top Ten 2004 Category A1 - Unvalidated Input (4.14)
No ratings yet
CWE - CWE-722 - OWASP Top Ten 2004 Category A1 - Unvalidated Input (4.14)
1 page
Cwe 2 7PK
No ratings yet
Cwe 2 7PK
1 page
CWE - CWE-751 - 2009 Top 25 - Insecure Interaction Between Components (4.14)
No ratings yet
CWE - CWE-751 - 2009 Top 25 - Insecure Interaction Between Components (4.14)
1 page
Cwe - Cwe-1211 - Cwe Category - Authentication Errors (4.17)
No ratings yet
Cwe - Cwe-1211 - Cwe Category - Authentication Errors (4.17)
1 page
CWE-400: Resource Consumption Risks
No ratings yet
CWE-400: Resource Consumption Risks
2 pages
Security Workflow Enforcement
No ratings yet
Security Workflow Enforcement
3 pages
Cwe - Cwe-933 (4.14)
No ratings yet
Cwe - Cwe-933 (4.14)
1 page
BH DC 07 Martin - Barnum - Christey
No ratings yet
BH DC 07 Martin - Barnum - Christey
41 pages
CWE - CWE-456 - Missing Initialization of A Variable (4.14)
No ratings yet
CWE - CWE-456 - Missing Initialization of A Variable (4.14)
2 pages
CWE-209: Sensitive Error Message Exposure
No ratings yet
CWE-209: Sensitive Error Message Exposure
2 pages
CWE - CWE-838 - Inappropriate Encoding For Output Context (4.15)
No ratings yet
CWE - CWE-838 - Inappropriate Encoding For Output Context (4.15)
3 pages
CWE - CWE-550 - Server-Generated Error Message Containing Sensitive Information (4.15)
No ratings yet
CWE - CWE-550 - Server-Generated Error Message Containing Sensitive Information (4.15)
1 page
CWE-1396 - Comprehensive Categorization - Access Control (4.13)
No ratings yet
CWE-1396 - Comprehensive Categorization - Access Control (4.13)
3 pages
Cwe - Cwe-550 2
No ratings yet
Cwe - Cwe-550 2
1 page
CWE - CWE-1390 - Weak Authentication (4.17)
No ratings yet
CWE - CWE-1390 - Weak Authentication (4.17)
2 pages
CWE - CWE-89 - Improper Neutralization of Special Elements Used in An SQL Command ('SQL Injection') (4.14)
No ratings yet
CWE - CWE-89 - Improper Neutralization of Special Elements Used in An SQL Command ('SQL Injection') (4.14)
2 pages
02-Public Security Repositories
No ratings yet
02-Public Security Repositories
80 pages
Introduction (Common Weakness Enumeration Most Dangerous Software Errors
No ratings yet
Introduction (Common Weakness Enumeration Most Dangerous Software Errors
4 pages
CWE-837: Improper Action Enforcement
No ratings yet
CWE-837: Improper Action Enforcement
2 pages
Business Logic Vulnerabilities
No ratings yet
Business Logic Vulnerabilities
2 pages
Numeric Range Check Vulnerability
No ratings yet
Numeric Range Check Vulnerability
5 pages
Tagging Your Binaries With A Risk Analysis Measurement From CWE/CWRAF
No ratings yet
Tagging Your Binaries With A Risk Analysis Measurement From CWE/CWRAF
45 pages
CWE - CWE-20 - Improper Input Validation (4.14)
No ratings yet
CWE - CWE-20 - Improper Input Validation (4.14)
4 pages
Cwe - Cwe-121
No ratings yet
Cwe - Cwe-121
3 pages
CWE - CWE-209 - Generation of Error Message Containing Sensitive Information (4.14)
No ratings yet
CWE - CWE-209 - Generation of Error Message Containing Sensitive Information (4.14)
2 pages
X Talk Martin
No ratings yet
X Talk Martin
5 pages
Cve CWSS
No ratings yet
Cve CWSS
49 pages
Struts Duplicate Validation Forms
No ratings yet
Struts Duplicate Validation Forms
1 page
04 Code Auditing
No ratings yet
04 Code Auditing
41 pages
CWE - CWE-400 - Uncontrolled Resource Consumption (4.14)
No ratings yet
CWE - CWE-400 - Uncontrolled Resource Consumption (4.14)
1 page
Entry Creation
No ratings yet
Entry Creation
23 pages
Understanding Software Vulnerabilities
No ratings yet
Understanding Software Vulnerabilities
47 pages
2011 Cwe Sans Top25
No ratings yet
2011 Cwe Sans Top25
40 pages
2011 Cwe Sans Top25 PDF
No ratings yet
2011 Cwe Sans Top25 PDF
41 pages
Jan 25 2023 Ssca Levendis
No ratings yet
Jan 25 2023 Ssca Levendis
14 pages
Buffer Underwrite Vulnerability Guide
No ratings yet
Buffer Underwrite Vulnerability Guide
3 pages
Algorithms 15 00314
No ratings yet
Algorithms 15 00314
22 pages
CWE - CWE-836 - Use of Password Hash Instead of Password For Authentication (4.17)
No ratings yet
CWE - CWE-836 - Use of Password Hash Instead of Password For Authentication (4.17)
2 pages
CWE/Sans Top 25 Most Dangerous Programming Errors
No ratings yet
CWE/Sans Top 25 Most Dangerous Programming Errors
14 pages
CWE Top 25 HTTP Testphp Vulnweb Com
No ratings yet
CWE Top 25 HTTP Testphp Vulnweb Com
60 pages
WP The Cwesans Top 25 Security Vulnerabilities What They Mean For Embedded Developers
No ratings yet
WP The Cwesans Top 25 Security Vulnerabilities What They Mean For Embedded Developers
7 pages
CVE Presentation
No ratings yet
CVE Presentation
17 pages
CVE System Overview & Management
No ratings yet
CVE System Overview & Management
4 pages
CWE - CWE Glossary
No ratings yet
CWE - CWE Glossary
12 pages
Vulnerabilities
No ratings yet
Vulnerabilities
3 pages
2024 CVE Insight
No ratings yet
2024 CVE Insight
10 pages
Top Concerns Vulnerability Data Report
No ratings yet
Top Concerns Vulnerability Data Report
3 pages
Cwe - Cwe-13
No ratings yet
Cwe - Cwe-13
1 page
Code Analysis
No ratings yet
Code Analysis
5 pages
Understanding OWASP Top 10 Risks
No ratings yet
Understanding OWASP Top 10 Risks
54 pages
CWE: Understanding Software Weaknesses
No ratings yet
CWE: Understanding Software Weaknesses
4 pages
Common Vulnerabilities and Exposures Project Report
No ratings yet
Common Vulnerabilities and Exposures Project Report
22 pages
Cwe-776: Improper Restriction of Recursive Entity References in Dtds ('XML Entity Expansion')
No ratings yet
Cwe-776: Improper Restriction of Recursive Entity References in Dtds ('XML Entity Expansion')
3 pages
Secure Coding Standard
No ratings yet
Secure Coding Standard
4 pages
Red Hat Open Approach Vulnerability Management 1 - 2
No ratings yet
Red Hat Open Approach Vulnerability Management 1 - 2
23 pages
05 Vulnerability Assessment
No ratings yet
05 Vulnerability Assessment
32 pages
NVD - Cve-2022-2839
No ratings yet
NVD - Cve-2022-2839
3 pages
NVD - Cve-2023-2841
No ratings yet
NVD - Cve-2023-2841
4 pages
NVD - Cve-2019-2840
No ratings yet
NVD - Cve-2019-2840
3 pages
NVD - Cve-2022-2838
No ratings yet
NVD - Cve-2022-2838
3 pages
NVD - Cve-2022-2837
No ratings yet
NVD - Cve-2022-2837
3 pages
AnupamaNilekar 29112024
No ratings yet
AnupamaNilekar 29112024
1 page
NVD - Cve-2024-2726
No ratings yet
NVD - Cve-2024-2726
3 pages
NVD - Cve-2020-19268
No ratings yet
NVD - Cve-2020-19268
3 pages
NVD - Cve-2023-20268
No ratings yet
NVD - Cve-2023-20268
4 pages
Vendor Assessment Checklist
0% (1)
Vendor Assessment Checklist
32 pages
Mounted Family of Computer Systems (Mfocs) Ii
No ratings yet
Mounted Family of Computer Systems (Mfocs) Ii
5 pages
Pavitha SivaSuthan Resume Tech2025
No ratings yet
Pavitha SivaSuthan Resume Tech2025
3 pages
Ai - Cyber Security Project
No ratings yet
Ai - Cyber Security Project
23 pages
Make Fortune
No ratings yet
Make Fortune
56 pages
Introduction to Cyber Security Course
No ratings yet
Introduction to Cyber Security Course
47 pages
Google Drive Technical Manual
No ratings yet
Google Drive Technical Manual
14 pages
Cybersecurity & Ethical Hacking
No ratings yet
Cybersecurity & Ethical Hacking
18 pages
Top 30 Nmap Commands for Network Admins
No ratings yet
Top 30 Nmap Commands for Network Admins
27 pages
Make Your Own Anti Virus With Batch Commands
No ratings yet
Make Your Own Anti Virus With Batch Commands
2 pages
Vulnerabilities in Two-Area Automatic Generation Control Systems Under Cyberattack
No ratings yet
Vulnerabilities in Two-Area Automatic Generation Control Systems Under Cyberattack
6 pages
US Financial Cybersecurity Tactics
No ratings yet
US Financial Cybersecurity Tactics
16 pages
CISSP Exam - How To Take It
100% (1)
CISSP Exam - How To Take It
20 pages
05 - Summarizing Basic Cryptographic Concepts
No ratings yet
05 - Summarizing Basic Cryptographic Concepts
17 pages
NIS Question Bank With Answers - End Semester (By Ur Engineering Friend)
No ratings yet
NIS Question Bank With Answers - End Semester (By Ur Engineering Friend)
93 pages
Certbot 0.19.0 Release Notes
No ratings yet
Certbot 0.19.0 Release Notes
148 pages
Understanding WAF and FortiWeb Features
No ratings yet
Understanding WAF and FortiWeb Features
11 pages
Network Security Engineer Profile
No ratings yet
Network Security Engineer Profile
7 pages
CSE-ND-2020-CS 8792-Cryptography and Network Security-488165205-CS8792 CRYPTOGRAPHY AND NETWORK SECURITY
No ratings yet
CSE-ND-2020-CS 8792-Cryptography and Network Security-488165205-CS8792 CRYPTOGRAPHY AND NETWORK SECURITY
3 pages
Infrastructure Team Setup Guide
No ratings yet
Infrastructure Team Setup Guide
10 pages
Acs104 CC QB
No ratings yet
Acs104 CC QB
15 pages
Krishna Singh Resume
No ratings yet
Krishna Singh Resume
2 pages
RTPS Caste 2023 0694553
No ratings yet
RTPS Caste 2023 0694553
1 page
01-PAM-ADMIN Introduction To CyberArk PAM
No ratings yet
01-PAM-ADMIN Introduction To CyberArk PAM
43 pages
Aws Iam
No ratings yet
Aws Iam
5 pages
Concur OAuth 2.0 Credentials Setup
No ratings yet
Concur OAuth 2.0 Credentials Setup
3 pages
Upi Response Codes
100% (1)
Upi Response Codes
20 pages
Haber Stornetta
No ratings yet
Haber Stornetta
13 pages
Business Plan Farm Tractor
No ratings yet
Business Plan Farm Tractor
10 pages
BRMS User Registration Form With Terms and Condition
No ratings yet
BRMS User Registration Form With Terms and Condition
5 pages

CWE - CWE-880 - CERT C++ Secure Coding Section 12 - Exceptions and Error Handling (ERR) (4.15)

Uploaded by

CWE - CWE-880 - CERT C++ Secure Coding Section 12 - Exceptions and Error Handling (ERR) (4.15)

Uploaded by

Common Weakness Enumeration

A community-developed list of SW & HW weaknesses that

Nature Type ID Name

Vulnerability Mapping Notes

See member weaknesses of this category.

[REF-861] CERT. "12. Exceptions and Error Handling (ERR)".

You might also like