# This file was generated from template 'codesonar/presets/cwe_kev10_2024.conf.in' # # Configuration settings required by warning classes closely mapped to # one or more of the 2024 CWE Top 10 KEV Weaknesses. # # This part of this file was generated from 'cso_wcmanifest.py' # # CWE:94: Improper Control of Generation of Code ('Code Injection') # This check is enabled by default for the language(s) Ada # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Code Injection (Ada)" # CWE:94: Improper Control of Generation of Code ('Code Injection') # This check is enabled by default for the language(s) C# # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Code Injection (C#)" # CWE:94: Improper Control of Generation of Code ('Code Injection') # This check is enabled by default for the language(s) Java, Kotlin # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Code Injection (Java)" # CWE:78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Command Injection" # CWE:77: Improper Neutralization of Special Elements used in a Command ('Command Injection') # This check is enabled by default for the language(s) Ada # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Command Injection (Ada)" # CWE:78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') # This check is enabled by default for the language(s) C# # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Command Injection (C#)" # CWE:78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') # This check is enabled by default for the language(s) Java, Kotlin # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Command Injection (Java)" # CWE:502: Deserialization of Untrusted Data WARNING_FILTER += allow class="Deserializable Class (Java)" # CWE:94: Improper Control of Generation of Code ('Code Injection') # This check is enabled by default for the language(s) Python # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Eval Used (Pylint)" # CWE:94: Improper Control of Generation of Code ('Code Injection') # This check is enabled by default for the language(s) Python # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Exec Used (Pylint)" # CWE:843: Access of Resource Using Incompatible Type ('Type Confusion') # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="GlobalHandle on GMEM_FIXED Memory" # CWE:843: Access of Resource Using Incompatible Type ('Type Confusion') # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="GlobalLock on GMEM_FIXED Memory" # CWE:843: Access of Resource Using Incompatible Type ('Type Confusion') # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="GlobalUnlock on GMEM_FIXED Memory" # CWE:843: Access of Resource Using Incompatible Type ('Type Confusion') # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="LocalHandle on LMEM_FIXED Memory" # CWE:843: Access of Resource Using Incompatible Type ('Type Confusion') # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="LocalLock on LMEM_FIXED Memory" # CWE:843: Access of Resource Using Incompatible Type ('Type Confusion') # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="LocalUnlock on LMEM_FIXED Memory" # CWE:78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') # This check is enabled by default for the language(s) Ada # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="OS Command Injection (Ada)" # CWE:787: Out-of-bounds Write # This check is enabled by default for the language(s) Python # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Potential Index Error (Pylint)" # CWE:89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="SQL Injection" # CWE:89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') # This check is enabled by default for the language(s) Ada # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="SQL Injection (Ada)" # CWE:89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') # This check is enabled by default for the language(s) C# # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="SQL Injection (C#)" # CWE:89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') # This check is enabled by default for the language(s) Java, Kotlin # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="SQL Injection (Java)" # CWE:502: Deserialization of Untrusted Data WARNING_FILTER += allow class="Serialization Not Disabled (Java)" # CWE:22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') WARNING_FILTER += allow class="Tainted Filename" # CWE:22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') # This check is enabled by default for the language(s) Ada # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Tainted Filename (Ada)" # CWE:22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') # This check is enabled by default for the language(s) C# # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Tainted Path (C#)" # CWE:22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') # This check is enabled by default for the language(s) Java, Kotlin # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Tainted Path (Java)" # CWE:843: Access of Resource Using Incompatible Type ('Type Confusion') # This check is enabled by default for the language(s) C, C++ # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Type Mismatch" # CWE:78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') WARNING_FILTER += allow class="Untrusted Process Creation" # CWE:416: Use After Free # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Use After Free" # CWE:416: Use After Free # This check is enabled by default for the language(s) Ada # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Use After Free (Ada)" # # The remainder of this file was generated from template 'codesonar/presets/cwe_kev10_2024.conf.in' #