This article has been indexed from SANS Internet Storm Center, InfoCON: green
If you are involved in the security industry  you are at least somewhat familiar with the Mitre ATT&CK framework, the very useful, community driven, knowledgebase of attack threat models and methodologies which can be used to emulate adversary behavior to test security controls. However fewer are aware of a lesser known Mitre project, Common Weakness Enumeration (CWE).
Read the original article: Mitre CWE – Common Weakness Enumeration, (Mon, Jun 21st)