CWEs vs CVEs, and How to Use Them

Episode 34 June 2, 2023
YouTube video

CWE: a common software weakness with standardized descriptors that could catalyze a vulnerability. CVE: a known public vulnerability associated with 3rd party software. Mark flies solo to explain the difference and how CVEs can help us at the prioritization stage, and how CWEs come into play further on the left as we correlate data across tools.

More tactics for AppSec Success are coming at AppSecCon 2023

Share on LinkedIn Share on X Share on Reddit

Listen Anywhere: Your Favorite Podcasts, Anytime

Related resources

Podcast

From Vulnerabilities to Trust: Fintech Security Strategies
Podcast

Season 3 Holiday Special
Podcast

Understanding AppSec Part 3: Testing Your Code – DAST, Pentesting and Red Teaming

Seeing Is Believing

Schedule a demo or take a tour today.

Get started