Welcome to the CWE Advisor Tool (CWE)

App Version: 1.1.0


Common Weakness Enumeration (CWE™) is a community-developed list of common software and hardware weakness

types that have security ramifications. A “weakness” is a condition in a software, firmware, hardware, or

service component that, under certain circumstances, could contribute to the introduction of vulnerabilities.

The CWE List and associated classification taxonomy serve as a language that can be used to identify and describe

these weaknesses in terms of CWEs.




Primarily, CWE helps developers and security practitioners to:


  1. Describe and discuss software and hardware weaknesses in a common language.>
  2. Check for weaknesses in existing software and hardware products.
  3. Evaluate coverage of tools targeting these weaknesses.
  4. Leverage a common baseline standard for weakness identification, mitigation, and prevention efforts.
  5. Prevent software and hardware vulnerabilities before deployment.


To use the App, please click on the navigation menus on navigation bar on top.


  1. Merysol Advisor CWE - Brings you back to this page
  2. Login - Authorizes your access to run the demos
  3. Find a CWE - See if your weakness / bug has already been documented
  4. Render CWE Diagram - See a Parent-Child Diagram for related CWEs
  5. History - A searchable record of your Prompts
  6. Back to Dashboard. Takes you back to the top of the Site

After you login, your credentials allow you to run the Advisor.


If you run out of demo tries, please send us email at umv@merysolsecurity.com to request more

Or, if you want to become a licensed user, click on Account Management and become a member!