Beyond CWEs: Mapping weaknesses in unstructured threat intelligence text

Stefano Simonetto; Ronan Oosteven; Thijs Van Ede; Peter Bosch; Willem Jonker

Publication

Beyond CWEs: Mapping weaknesses in unstructured threat intelligence text

Stefano Simonetto, Ronan Oosteven, Thijs Van Ede, Peter Bosch, Willem Jonker

2025 · International Conference on Cryptology and Network Security

This paper studies how security-relevant descriptions from unstructured threat intelligence can be detected and mapped to Common Weakness Enumeration categories. It proposes a two-step pipeline that first identifies CWE-like content in free text and then maps that text to structured weakness labels.

Download PDF Code Repository All publications