| Multiple Releases of Same Resource or Handle | |
| Credential Exposure | |
| Integer Overflow to Buffer Overflow | |
| Information Exposure | |
| Comparison Using Wrong Factors | |
| Improper Certificate Validation | |
| Out-of-bounds Read | |
| Out-of-bounds Read | |
| Free of Memory not on the Heap | |
| Improper Certificate Validation | |
| Improper Certificate Validation | |
| Authentication Bypass by Spoofing | |
| Uncontrolled Resource Consumption ('Resource Exhaustion') | |
| Improper Check for Certificate Revocation | |
| Information Exposure | |
| Missing Encryption of Sensitive Data | |
| External Control of File Name or Path | |
| Heap-based Buffer Overflow | |
| Allocation of Resources Without Limits or Throttling | |
| Time-of-check Time-of-use (TOCTOU) Race Condition | |
| Improper Synchronization | |
| Improper Certificate Validation | |
| Expected Behavior Violation | |
| Use After Free | |
| Double Free | |
| Authentication Bypass by Primary Weakness | |
| Authentication Bypass | |
| Directory Traversal | |
| Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) | |
| Allocation of Resources Without Limits or Throttling | |
| Cleartext Transmission of Sensitive Information | |
| Cleartext Transmission of Sensitive Information | |
| Use After Free | |
| Cleartext Transmission of Sensitive Information | |
| Stack-based Buffer Overflow | |
| Cleartext Transmission of Sensitive Information | |
| Double Free | |
| Expected Behavior Violation | |
| Improper Validation of Syntactic Correctness of Input | |
| Improper Preservation of Permissions | |
| Denial of Service (DoS) | |
| Improper Enforcement of Message Integrity During Transmission in a Communication Channel | |
| Denial of Service (DoS) | |
| Improper Authentication | |
| Cleartext Transmission of Sensitive Information | |
| Infinite loop | |
| Inappropriate Encoding for Output Context | |
| Release of Invalid Pointer or Reference | |
| Information Exposure | |
| Information Exposure | |
| Improper Authentication | |
| Insufficiently Protected Credentials | |
| Open Redirect | |
| Cryptographic Issues | |
| Improper Validation | |
| Directory Traversal | |
| Resources Downloaded over Insecure Protocol | |
| Out-of-bounds Write | |
| Improper Initialization | |
| Arbitrary Code Injection | |
| Out-of-bounds Read | |
| Improper Certificate Validation | |
| Improper Input Validation | |
| Out-of-Bounds | |
| Cross-site Request Forgery (CSRF) | |
| Insufficiently Protected Credentials | |
| Improper Authentication | |
| Use of Uninitialized Resource | |
| Out-of-Bounds | |
| Cryptographic Issues | |
| Integer Overflow or Wraparound | |
| Improper Input Validation | |
| Improper Input Validation | |
| Cryptographic Issues | |
| Access Restriction Bypass | |
| Double Free | |
| NULL Pointer Dereference | |
| Information Exposure | |
| Out-of-bounds Write | |
| Integer Overflow or Wraparound | |
| Out-of-bounds Write | |
| Out-of-bounds Write | |
| Use After Free | |
| Out-of-Bounds | |
| Improper Certificate Validation | |
| Access Restriction Bypass | |
| Heap-based Buffer Overflow | |
| Access Restriction Bypass | |
| Insufficiently Protected Credentials | |
| Improper Authentication | |
| Improper Input Validation | |
| Remote Code Execution (RCE) | |
| Improper Input Validation | |
| Buffer Overflow | |
| Improper Certificate Validation | |
| Insufficiently Protected Credentials | |
| Improper Input Validation | |
| Out-of-bounds Read | |
| Improper Authentication | |
| Out-of-bounds Read | |
| Out-of-bounds Read | |
| Integer Overflow or Wraparound | |
| Improper Authorization | |
| Access Restriction Bypass | |
| Denial of Service (DoS) | |
| Out-of-Bounds | |
| Out-of-bounds Read | |
| Information Exposure | |
| Use After Free | |
| Denial of Service (DoS) | |
| Double Free | |
| Improper Input Validation | |
| Improper Access Control | |
| Out-of-bounds Write | |
| Out-of-Bounds | |
| Out-of-bounds Read | |
| Information Exposure | |
| Out-of-Bounds | |
| Double Free | |
| Out-of-bounds Read | |
| Cryptographic Issues | |
| Use After Free | |
| Information Exposure | |
| Integer Overflow or Wraparound | |
| Improper Input Validation | |
| Insufficiently Protected Credentials | |
| Out-of-Bounds | |
| Insufficient Verification of Data Authenticity | |
| Out-of-Bounds | |
| Information Exposure | |
| Out-of-bounds Read | |
| Out-of-bounds Read | |
| Out-of-bounds Write | |
| Out-of-Bounds | |
| Improper Certificate Validation | |
| Information Exposure | |
| Use After Free | |
| Information Exposure | |
| Use After Free | |
| Exposure of Sensitive Information to an Unauthorized Actor | |
| CRLF Injection | |
| Improper Authentication | |
| Information Exposure | |
| Buffer Overflow | |
| Improper Certificate Validation | |
| Race Condition | |
| Out-of-bounds Write | |
| Information Exposure | |
| SQL Injection | |
| Resource Injection | |
| Out-of-Bounds | |
| Buffer Overflow | |
| Double Free | |
| Cryptographic Issues | |
| User Impersonation | |
| Out-of-bounds Write | |
| Cryptographic Issues | |
| Out-of-bounds Read | |
| Information Exposure | |
| Improper Authentication | |
| Out-of-Bounds | |
| Out-of-Bounds | |
| Missing Initialization of Resource | |
| Arbitrary Code Execution | |
