Category-945: SFP Secondary Cluster: Insecure Resource Access
ID: 945 Status: Incomplete
Summary
This category identifies Software Fault Patterns (SFPs) within the Insecure Resource Access cluster.
Membership
| ID | NAME |
|---|---|
| CWE-285 | 授权机制不恰当 |
| CWE-424 | 对候选路径的不恰当保护 |
| CWE-639 | 通过用户控制密钥绕过授权机制 |
| CWE-650 | 在服务器端信任HTTP权限模型 |