Skip to content

Class: Cwe

The CWE object represents a weakness in a software system that can be exploited

by a threat actor to perform an attack. The CWE object is based on the <a

target='_blank' href='https://cwe.mitre.org/'>Common Weakness Enumeration

(CWE) catalog.

URI: ocsf:Cwe

 classDiagram
    class Cwe
    click Cwe href "../Cwe/"
      Object <|-- Cwe
        click Object href "../Object/"

      Cwe : caption

      Cwe : src_url

      Cwe : uid

Inheritance

Slots

Name Cardinality and Range Description Inheritance
caption 0..1
String		 The caption assigned to the Common Weakness Enumeration unique identifier direct
src_url 0..1
UrlT		 URL pointing to the CWE Specification direct
uid 1
String		 The Common Weakness Enumeration unique number assigned to a specific weakness direct

Usages

used by used in type used
Vulnerability cwe range Cwe
Advisory related_cwes range Cwe
Cve cwe range Cwe
Cve related_cwes range Cwe

In Subsets

Aliases

  • CWE

Identifier and Mapping Information

Schema Source

Mappings

Mapping Type Mapped Value
self ocsf:Cwe
native ocsf:Cwe
exact cwe:Weakness, core:Weakness
close nvd:NVDWeakness

LinkML Source

Direct

name: Cwe
description: 'The CWE object represents a weakness in a software system that can be
  exploited

  by a threat actor to perform an attack. The CWE object is based on the <a

  target=''_blank'' href=''https://cwe.mitre.org/''>Common Weakness Enumeration

  (CWE)</a> catalog.'
in_subset:
- objects_subset
from_schema: https://w3id.org/lmodel/ocsf
aliases:
- CWE
exact_mappings:
- cwe:Weakness
- core:Weakness
close_mappings:
- nvd:NVDWeakness
is_a: Object
slots:
- caption
- src_url
- uid
slot_usage:
  caption:
    name: caption
    description: The caption assigned to the Common Weakness Enumeration unique identifier.
  src_url:
    name: src_url
    description: 'URL pointing to the CWE Specification. For more information see
      <a

      target=''_blank'' href=''https://cwe.mitre.org/''>CWE.</a>'
  uid:
    name: uid
    description: 'The Common Weakness Enumeration unique number assigned to a specific
      weakness.

      A CWE Identifier begins "CWE" followed by a sequence of digits that acts as
      a

      unique identifier. For example: <code>CWE-123</code>.'
    required: true

Induced

name: Cwe
description: 'The CWE object represents a weakness in a software system that can be
  exploited

  by a threat actor to perform an attack. The CWE object is based on the <a

  target=''_blank'' href=''https://cwe.mitre.org/''>Common Weakness Enumeration

  (CWE)</a> catalog.'
in_subset:
- objects_subset
from_schema: https://w3id.org/lmodel/ocsf
aliases:
- CWE
exact_mappings:
- cwe:Weakness
- core:Weakness
close_mappings:
- nvd:NVDWeakness
is_a: Object
slot_usage:
  caption:
    name: caption
    description: The caption assigned to the Common Weakness Enumeration unique identifier.
  src_url:
    name: src_url
    description: 'URL pointing to the CWE Specification. For more information see
      <a

      target=''_blank'' href=''https://cwe.mitre.org/''>CWE.</a>'
  uid:
    name: uid
    description: 'The Common Weakness Enumeration unique number assigned to a specific
      weakness.

      A CWE Identifier begins "CWE" followed by a sequence of digits that acts as
      a

      unique identifier. For example: <code>CWE-123</code>.'
    required: true
attributes:
  caption:
    name: caption
    description: The caption assigned to the Common Weakness Enumeration unique identifier.
    from_schema: https://w3id.org/lmodel/ocsf
    aliases:
    - Caption
    rank: 1000
    alias: caption
    owner: Cwe
    domain_of:
    - Cwe
    range: string
  src_url:
    name: src_url
    description: 'URL pointing to the CWE Specification. For more information see
      <a

      target=''_blank'' href=''https://cwe.mitre.org/''>CWE.</a>'
    from_schema: https://w3id.org/lmodel/ocsf
    aliases:
    - Source URL
    rank: 1000
    alias: src_url
    owner: Cwe
    domain_of:
    - Osint
    - Package
    - Ticket
    - Advisory
    - Cvss
    - Cwe
    - D3fTactic
    - D3fTechnique
    - DataClassification
    - Enrichment
    - FindingObject
    - FindingInfo
    - KbArticle
    - Mitigation
    - SubTechnique
    - Tactic
    - Technique
    - IncidentProfile
    - IncidentFinding
    range: UrlT
  uid:
    name: uid
    description: 'The Common Weakness Enumeration unique number assigned to a specific
      weakness.

      A CWE Identifier begins "CWE" followed by a sequence of digits that acts as
      a

      unique identifier. For example: <code>CWE-123</code>.'
    from_schema: https://w3id.org/lmodel/ocsf
    aliases:
    - Unique ID
    rank: 1000
    alias: uid
    owner: Cwe
    domain_of:
    - Osint
    - Package
    - ProgrammaticCredential
    - RelatedEvent
    - Request
    - Sbom
    - Scim
    - Script
    - Session
    - Span
    - Sso
    - Ticket
    - Token
    - Trace
    - Entity
    - Resource
    - Account
    - Advisory
    - Agent
    - AiModel
    - Aircraft
    - Analytic
    - ApplicationObject
    - Assessment
    - Certificate
    - Check
    - ClassifierDetails
    - Container
    - Cve
    - Cwe
    - D3fTactic
    - D3fTechnique
    - DataClassification
    - Database
    - Databucket
    - DomainContact
    - Edge
    - Email
    - Endpoint
    - Evidences
    - Extension
    - Feature
    - File
    - FindingObject
    - FindingInfo
    - Graph
    - Group
    - HttpRequest
    - Idp
    - Image
    - KbArticle
    - LoadBalancer
    - Logger
    - Malware
    - ManagedEntity
    - MessageContext
    - Metadata
    - Mitigation
    - NetworkConnectionInfo
    - NetworkEndpoint
    - NetworkInterface
    - Node
    - Organization
    - PeripheralDevice
    - Policy
    - ProcessEntity
    - Product
    - QueryInfo
    - Reporter
    - Rule
    - Scan
    - Service
    - SubTechnique
    - Table
    - Tactic
    - Technique
    - Trait
    - TransformationInfo
    - UnmannedAerialSystem
    - User
    - WebResource
    - Device
    - WinResource
    range: string
    required: true