CWE - CWE-1362: CWE CATEGORY: ICS Engineering (Constructions/Deployment) (4.18)

Home > CWE List > CWE- Individual Dictionary Definition (4.18)

CWE Glossary Definition

CWE CATEGORY: ICS Engineering (Constructions/Deployment)

Category ID: 1362

Vulnerability Mapping: PROHIBITED This CWE ID must not be used to map to real-world vulnerabilities

Summary

Weaknesses in this category are related to the "ICS Engineering (Constructions/Deployment)" super category from the SEI ETF "Categories of Security Vulnerabilities in ICS" as published in March 2022.

Membership

Nature	Type	ID	Name
MemberOf	ViewView - a subset of CWE entries that provides a way of examining CWE content. The two main view structures are Slices (flat lists) and Graphs (containing relationships between entries).	1358	Weaknesses in SEI ETF Categories of Security Vulnerabilities in ICS
HasMember	CategoryCategory - a CWE entry that contains a set of other entries that share a common characteristic.	1373	ICS Engineering (Construction/Deployment): Trust Model Problems
HasMember	CategoryCategory - a CWE entry that contains a set of other entries that share a common characteristic.	1374	ICS Engineering (Construction/Deployment): Maker Breaker Blindness
HasMember	CategoryCategory - a CWE entry that contains a set of other entries that share a common characteristic.	1375	ICS Engineering (Construction/Deployment): Gaps in Details/Data
HasMember	CategoryCategory - a CWE entry that contains a set of other entries that share a common characteristic.	1376	ICS Engineering (Construction/Deployment): Security Gaps in Commissioning
HasMember	CategoryCategory - a CWE entry that contains a set of other entries that share a common characteristic.	1377	ICS Engineering (Construction/Deployment): Inherent Predictability in Design

Vulnerability Mapping Notes

Usage: PROHIBITED

(this CWE ID must not be used to map to real-world vulnerabilities)

Reason: Category

Rationale:

This entry is a Category. Using categories for mapping has been discouraged since 2019. Categories are informal organizational groupings of weaknesses that can help CWE users with data aggregation, navigation, and browsing. However, they are not weaknesses in themselves.

Comments:

See member weaknesses of this category.

Notes

Relationship

Relationships in this category are not authoritative and subject to change. See Maintenance notes.

Maintenance

This category was created in CWE 4.7 to facilitate and illuminate discussion about weaknesses in ICS with [REF-1248] as a starting point. After the release of CWE 4.9 in October 2022, this has been under active review by members of the "Boosting CWE" subgroup of the CWE-CAPEC ICS/OT Special Interest Group (SIG). Relationships are still subject to change. In addition, there may be some issues in [REF-1248] that are outside of the current scope of CWE, which will require consultation with many CWE stakeholders to resolve.

References

[REF-1248] Securing Energy Infrastructure Executive Task Force (SEI ETF). "Categories of Security Vulnerabilities in ICS". 2022年03月09日. <https://secureenergy.inl.gov/content/uploads/27/2024/12/SEI-ETF-NCSV-TPT-Categories-of-Security-Vulnerabilities-ICS-v1_03-09-22.pdf>. URL validated: 2025年08月04日.

Content History

Submissions
Submission Date	Submitter	Organization
2022年03月09日 (CWE 4.7, 2022年04月28日)	New Categories of Security Vulnerabilities (NCSV) Technical Project Team (TPT)	Securing Energy Infrastructure Executive Task Force
2022年03月09日 (CWE 4.7, 2022年04月28日)
Modifications
Modification Date	Modifier	Organization
2023年01月31日	CWE Content Team	MITRE
2023年01月31日	updated Maintenance_Notes, Relationship_Notes
2023年04月27日	CWE Content Team	MITRE
2023年04月27日	updated Mapping_Notes
2023年06月29日	CWE Content Team	MITRE
2023年06月29日	updated Mapping_Notes
2025年09月09日 (CWE 4.18, 2025年09月09日)	CWE Content Team	MITRE
2025年09月09日 (CWE 4.18, 2025年09月09日)	updated References

More information is available — Please edit the custom filter or select a different filter.

Page Last Updated: September 09, 2025

MITRE

Use of the Common Weakness Enumeration (CWE™) and the associated references from this website are subject to the Terms of Use. CWE is sponsored by the U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) and managed by the Homeland Security Systems Engineering and Development Institute (HSSEDI) which is operated by The MITRE Corporation (MITRE). Copyright © 2006–2025, The MITRE Corporation. CWE, CWSS, CWRAF, and the CWE logo are trademarks of The MITRE Corporation.

HSSEDI