CodeCheck Documentation - MITRE CWE Top 25
| CodeCheck Documentation CodeCheck Documentation - MITRE CWE Top 25 | |
| Check ID | Check Name | Supported |
|---|---|---|
| CWE-77 | Improper Neutralization of Special Elements used in a Command ('Command Injection') | Yes |
| CWE-78 | Improper Neutralization of Special Elements used in an OS Command ('Command Injection') | Yes |
| CWE-94 | Improper Control of Generation of Code ('Code Injection')(Partial) | Yes |
| CWE-119A | Improper Restriction of Operations within the Bounds of a Memory Buffer(Part A: Read) | Yes |
| CWE-119B | Improper Restriction of Operations within the Bounds of a Memory Buffer(Part B: Write) | Yes |
| CWE-125 | Out-of-bounds Read | Yes |
| CWE-190 | Integer Overflow or Wraparound | Yes |
| CWE-306 | Missing Authentication for Critical Function (Partial) | Yes |
| CWE-362 | Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')(Partial) | Yes |
| CWE-476 | NULL Pointer Dereference | Yes |
| CWE-502 | Deserialization of Untrusted Data (Partial) | Yes |
| CWE-787 | Out-of-bounds Write | Yes |
| CWE-798 | Use of Hard-coded Credentials (Partial) | Yes |