Category-1035: OWASP 2017年十大分类A9-使用含有已知漏洞的组件

ID: 1035 Status: Incomplete


Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.



This is an unusual category. CWE does not cover the limitations of human processes and procedures that cannot be described in terms of a specific technical weakness as resident in the code, architecture, or configuration of the software. Since "known vulnerabilities" can arise from any kind of weakness, it is not possible to map this OWASP category to other CWE entries, since it would effectively require mapping this category to ALL weaknesses.


REF-957 Top 10 2017