Home/CWE/Configuration
Weakness

Configuration

CWE-16 · Category

Weaknesses in this category are typically introduced during the configuration of the software.

ATT&CK Techniques

1
Adversary techniques associated with this weakness, via MITRE CAPEC and authoritative CTID CVE mappings.
T1190Exploit Public-Facing Application

CVEs With This Weakness

317
A sample of the 317 CVEs tagged with this weakness.
CVECVE-2026-4433
CVECVE-2025-20151
CVECVE-2025-12221
CVECVE-2024-47294
CVECVE-2024-47291
CVECVE-2024-46909
CVECVE-2024-42031
CVECVE-2024-32991
CVECVE-2023-52719
CVECVE-2023-43088
CVECVE-2023-39392
CVECVE-2023-39385
View all 317 CVEs with this weakness

Nuclei Scanner Templates

1
Open-source Nuclei templates that detect this weakness class - an actionable scan-for-it pivot. Licensed under the ProjectDiscovery / Nuclei terms.
highDistccd v1 - Remote Code Execution
External lookups - second-class, for what we don’t hold ourselves
MITRE CWE
SOC and Response
CVE triage
Stack monitoring
Am I affected
IOC triage
KEV catalog
Daily brief
Change tracking
Detection Engineering
Coverage workspace
Detection coverage
Coverage check
Telemetry ceiling
SIEM query builder
Sigma rules
SIEM rules
YARA rules
Network rules
D3FEND
Threat Hunting
Threat actors
ATT&CK techniques
Attack paths
Indicators
Atomic tests
Red Team and Pentest
Exploitability triage
Recon pack
Attack paths
CAPEC patterns
Adversary emulation
Compliance and GRC
Framework mapping
Control assessment
Audit view
Coverage report
Atlas Search Threat actors Techniques Tools & malware CWE CAPEC KEV catalog Package vulns TAXII feed Data sources
About All capabilities Pricing API docs Live status Privacy policy Terms of service
threatengine.sh