{"id":"https://openalex.org/W4388158162","doi":"https://doi.org/10.1186/s42400-023-00160-1","title":"Graph neural network based approach to automatically assigning common weakness enumeration identifiers for vulnerabilities","display_name":"Graph neural network based approach to automatically assigning common weakness enumeration identifiers for vulnerabilities","publication_year":2023,"publication_date":"2023-11-02","ids":{"openalex":"https://openalex.org/W4388158162","doi":"https://doi.org/10.1186/s42400-023-00160-1"},"language":"en","primary_location":{"id":"doi:10.1186/s42400-023-00160-1","is_oa":true,"landing_page_url":"https://doi.org/10.1186/s42400-023-00160-1","pdf_url":"https://cybersecurity.springeropen.com/counter/pdf/10.1186/s42400-023-00160-1","source":{"id":"https://openalex.org/S3035238565","display_name":"Cybersecurity","issn_l":"2523-3246","issn":["2523-3246"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319965","host_organization_name":"Springer Nature","host_organization_lineage":["https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Cybersecurity","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"diamond","oa_url":"https://cybersecurity.springeropen.com/counter/pdf/10.1186/s42400-023-00160-1","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5092124415","display_name":"Peng Liu","orcid":null},"institutions":[{"id":"https://openalex.org/I29739308","display_name":"Guangxi Normal University","ror":"https://ror.org/02frt9q65","country_code":"CN","type":"education","lineage":["https://openalex.org/I29739308"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Peng Liu","raw_affiliation_strings":["Guangxi Key Lab of Multi-Source Information Mining and Security, Guangxi Normal University, Guilin, 541004, China","Key Lab of Education Blockchain and Intelligent Technology, Ministry of Education, Guangxi Normal University, Guilin, 541004, China"],"affiliations":[{"raw_affiliation_string":"Guangxi Key Lab of Multi-Source Information Mining and Security, Guangxi Normal University, Guilin, 541004, China","institution_ids":["https://openalex.org/I29739308"]},{"raw_affiliation_string":"Key Lab of Education Blockchain and Intelligent Technology, Ministry of Education, Guangxi Normal University, Guilin, 541004, China","institution_ids":["https://openalex.org/I29739308"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5026777964","display_name":"Wenzhe Ye","orcid":"https://orcid.org/0009-0007-2587-6876"},"institutions":[{"id":"https://openalex.org/I29739308","display_name":"Guangxi Normal University","ror":"https://ror.org/02frt9q65","country_code":"CN","type":"education","lineage":["https://openalex.org/I29739308"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Wenzhe Ye","raw_affiliation_strings":["Guangxi Key Lab of Multi-Source Information Mining and Security, Guangxi Normal University, Guilin, 541004, China","Key Lab of Education Blockchain and Intelligent Technology, Ministry of Education, Guangxi Normal University, Guilin, 541004, China"],"affiliations":[{"raw_affiliation_string":"Guangxi Key Lab of Multi-Source Information Mining and Security, Guangxi Normal University, Guilin, 541004, China","institution_ids":["https://openalex.org/I29739308"]},{"raw_affiliation_string":"Key Lab of Education Blockchain and Intelligent Technology, Ministry of Education, Guangxi Normal University, Guilin, 541004, China","institution_ids":["https://openalex.org/I29739308"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5112933117","display_name":"Haiying Duan","orcid":null},"institutions":[{"id":"https://openalex.org/I82880672","display_name":"Beihang University","ror":"https://ror.org/00wk2mp56","country_code":"CN","type":"education","lineage":["https://openalex.org/I82880672"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Haiying Duan","raw_affiliation_strings":["School of Software, Beihang University, Beijing, 100000, China"],"affiliations":[{"raw_affiliation_string":"School of Software, Beihang University, Beijing, 100000, China","institution_ids":["https://openalex.org/I82880672"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5037037839","display_name":"Xianxian Li","orcid":"https://orcid.org/0000-0002-7083-3847"},"institutions":[{"id":"https://openalex.org/I29739308","display_name":"Guangxi Normal University","ror":"https://ror.org/02frt9q65","country_code":"CN","type":"education","lineage":["https://openalex.org/I29739308"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xianxian Li","raw_affiliation_strings":["Guangxi Key Lab of Multi-Source Information Mining and Security, Guangxi Normal University, Guilin, 541004, China","Key Lab of Education Blockchain and Intelligent Technology, Ministry of Education, Guangxi Normal University, Guilin, 541004, China"],"affiliations":[{"raw_affiliation_string":"Guangxi Key Lab of Multi-Source Information Mining and Security, Guangxi Normal University, Guilin, 541004, China","institution_ids":["https://openalex.org/I29739308"]},{"raw_affiliation_string":"Key Lab of Education Blockchain and Intelligent Technology, Ministry of Education, Guangxi Normal University, Guilin, 541004, China","institution_ids":["https://openalex.org/I29739308"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100602366","display_name":"Shuyi Zhang","orcid":"https://orcid.org/0000-0002-1501-7847"},"institutions":[{"id":"https://openalex.org/I29739308","display_name":"Guangxi Normal University","ror":"https://ror.org/02frt9q65","country_code":"CN","type":"education","lineage":["https://openalex.org/I29739308"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Shuyi Zhang","raw_affiliation_strings":["Guangxi Key Lab of Multi-Source Information Mining and Security, Guangxi Normal University, Guilin, 541004, China","Key Lab of Education Blockchain and Intelligent Technology, Ministry of Education, Guangxi Normal University, Guilin, 541004, China"],"affiliations":[{"raw_affiliation_string":"Guangxi Key Lab of Multi-Source Information Mining and Security, Guangxi Normal University, Guilin, 541004, China","institution_ids":["https://openalex.org/I29739308"]},{"raw_affiliation_string":"Key Lab of Education Blockchain and Intelligent Technology, Ministry of Education, Guangxi Normal University, Guilin, 541004, China","institution_ids":["https://openalex.org/I29739308"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5062105888","display_name":"Chuanjian Yao","orcid":"https://orcid.org/0000-0002-2408-2296"},"institutions":[{"id":"https://openalex.org/I29739308","display_name":"Guangxi Normal University","ror":"https://ror.org/02frt9q65","country_code":"CN","type":"education","lineage":["https://openalex.org/I29739308"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Chuanjian Yao","raw_affiliation_strings":["Guangxi Key Lab of Multi-Source Information Mining and Security, Guangxi Normal University, Guilin, 541004, China","Key Lab of Education Blockchain and Intelligent Technology, Ministry of Education, Guangxi Normal University, Guilin, 541004, China"],"affiliations":[{"raw_affiliation_string":"Guangxi Key Lab of Multi-Source Information Mining and Security, Guangxi Normal University, Guilin, 541004, China","institution_ids":["https://openalex.org/I29739308"]},{"raw_affiliation_string":"Key Lab of Education Blockchain and Intelligent Technology, Ministry of Education, Guangxi Normal University, Guilin, 541004, China","institution_ids":["https://openalex.org/I29739308"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5101885941","display_name":"Yongnan Li","orcid":"https://orcid.org/0000-0003-1607-7486"},"institutions":[{"id":"https://openalex.org/I37448385","display_name":"China People's Public Security University","ror":"https://ror.org/05twya590","country_code":"CN","type":"education","lineage":["https://openalex.org/I37448385"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Yongnan Li","raw_affiliation_strings":["School of National Security, People\u2019s Public Security University of China, Beijing, 1000000, China","School of National Security, People's Public Security University of China, Beijing, 1000000, China"],"affiliations":[{"raw_affiliation_string":"School of National Security, People\u2019s Public Security University of China, Beijing, 1000000, China","institution_ids":["https://openalex.org/I37448385"]},{"raw_affiliation_string":"School of National Security, People's Public Security University of China, Beijing, 1000000, China","institution_ids":["https://openalex.org/I37448385"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":7,"corresponding_author_ids":["https://openalex.org/A5092124415"],"corresponding_institution_ids":["https://openalex.org/I29739308"],"apc_list":null,"apc_paid":null,"fwci":1.8303,"has_fulltext":false,"cited_by_count":4,"citation_normalized_percentile":{"value":0.88858455,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":99},"biblio":{"volume":"6","issue":"1","first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9957000017166138,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":0.994700014591217,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7996491193771362},{"id":"https://openalex.org/keywords/leverage","display_name":"Leverage (statistics)","score":0.5094161629676819},{"id":"https://openalex.org/keywords/graph","display_name":"Graph","score":0.503663957118988},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.48192739486694336},{"id":"https://openalex.org/keywords/abstract-syntax-tree","display_name":"Abstract syntax tree","score":0.4653834402561188},{"id":"https://openalex.org/keywords/identifier","display_name":"Identifier","score":0.45210832357406616},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.4324226379394531},{"id":"https://openalex.org/keywords/dependency","display_name":"Dependency (UML)","score":0.41762471199035645},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.4021231532096863},{"id":"https://openalex.org/keywords/syntax","display_name":"Syntax","score":0.39285922050476074},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.3437979221343994},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.25985294580459595},{"id":"https://openalex.org/keywords/theoretical-computer-science","display_name":"Theoretical computer science","score":0.2419048547744751},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.168082594871521}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7996491193771362},{"id":"https://openalex.org/C153083717","wikidata":"https://www.wikidata.org/wiki/Q6535263","display_name":"Leverage (statistics)","level":2,"score":0.5094161629676819},{"id":"https://openalex.org/C132525143","wikidata":"https://www.wikidata.org/wiki/Q141488","display_name":"Graph","level":2,"score":0.503663957118988},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.48192739486694336},{"id":"https://openalex.org/C58646249","wikidata":"https://www.wikidata.org/wiki/Q127380","display_name":"Abstract syntax tree","level":3,"score":0.4653834402561188},{"id":"https://openalex.org/C154504017","wikidata":"https://www.wikidata.org/wiki/Q853614","display_name":"Identifier","level":2,"score":0.45210832357406616},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.4324226379394531},{"id":"https://openalex.org/C19768560","wikidata":"https://www.wikidata.org/wiki/Q320727","display_name":"Dependency (UML)","level":2,"score":0.41762471199035645},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.4021231532096863},{"id":"https://openalex.org/C60048249","wikidata":"https://www.wikidata.org/wiki/Q37437","display_name":"Syntax","level":2,"score":0.39285922050476074},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.3437979221343994},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.25985294580459595},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.2419048547744751},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.168082594871521}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1186/s42400-023-00160-1","is_oa":true,"landing_page_url":"https://doi.org/10.1186/s42400-023-00160-1","pdf_url":"https://cybersecurity.springeropen.com/counter/pdf/10.1186/s42400-023-00160-1","source":{"id":"https://openalex.org/S3035238565","display_name":"Cybersecurity","issn_l":"2523-3246","issn":["2523-3246"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319965","host_organization_name":"Springer Nature","host_organization_lineage":["https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Cybersecurity","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:9fdae8e06c4a401ca9058495a2f9addf","is_oa":true,"landing_page_url":"https://doaj.org/article/9fdae8e06c4a401ca9058495a2f9addf","pdf_url":null,"source":{"id":"https://openalex.org/S112646816","display_name":"SHILAP Revista de lepidopterolog\u00eda","issn_l":"0300-5267","issn":["0300-5267","2340-4078"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Cybersecurity, Vol 6, Iss 1, Pp 1-15 (2023)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.1186/s42400-023-00160-1","is_oa":true,"landing_page_url":"https://doi.org/10.1186/s42400-023-00160-1","pdf_url":"https://cybersecurity.springeropen.com/counter/pdf/10.1186/s42400-023-00160-1","source":{"id":"https://openalex.org/S3035238565","display_name":"Cybersecurity","issn_l":"2523-3246","issn":["2523-3246"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319965","host_organization_name":"Springer Nature","host_organization_lineage":["https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Nature"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Cybersecurity","raw_type":"journal-article"},"sustainable_development_goals":[{"score":0.5600000023841858,"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[],"has_content":{"pdf":true,"grobid_xml":false},"content_urls":{"pdf":"https://content.openalex.org/works/W4388158162.pdf"},"referenced_works_count":16,"referenced_works":["https://openalex.org/W2004228899","https://openalex.org/W2101926813","https://openalex.org/W2125092413","https://openalex.org/W2170371481","https://openalex.org/W2510940142","https://openalex.org/W2538706977","https://openalex.org/W2885030880","https://openalex.org/W2955230520","https://openalex.org/W3117923638","https://openalex.org/W3177116043","https://openalex.org/W3191605668","https://openalex.org/W3194346579","https://openalex.org/W3198501808","https://openalex.org/W3210162706","https://openalex.org/W4207035036","https://openalex.org/W4246166885"],"related_works":["https://openalex.org/W2077104824","https://openalex.org/W2080244595","https://openalex.org/W2536864162","https://openalex.org/W2390421503","https://openalex.org/W1533028283","https://openalex.org/W2036499707","https://openalex.org/W2095633838","https://openalex.org/W2364428493","https://openalex.org/W1515799349","https://openalex.org/W2387926336"],"abstract_inverted_index":{"Abstract":[0],"Vulnerability":[1],"reports":[2],"are":[3],"essential":[4],"for":[5,41,156],"improving":[6],"software":[7,78],"security":[8],"since":[9],"they":[10],"record":[11],"key":[12],"information":[13,136],"on":[14],"vulnerabilities.":[15,45,158],"In":[16,46],"a":[17,63],"report,":[18],"CWE":[19,37,53,154],"denotes":[20],"the":[21,24,31,34,100,117,128,134,142,147,164],"weakness":[22],"of":[23,33,102,107],"vulnerability":[25,85,150],"and":[26,75,91,120,140],"thus":[27],"helps":[28],"quickly":[29],"understand":[30],"cause":[32],"vulnerability.":[35],"Therefore,":[36],"assignment":[38,54],"is":[39,167],"useful":[40],"categorizing":[42],"newly":[43],"discovered":[44],"this":[47],"paper,":[48],"we":[49,61,81,109,126],"propose":[50],"an":[51],"automatic":[52],"method":[55,166],"with":[56,84,113],"graph":[57,129],"neural":[58,130],"networks.":[59],"First,":[60],"prepare":[62],"dataset":[64],"that":[65,115,163],"contains":[66],"3394":[67],"real":[68],"world":[69],"vulnerabilities":[70,90],"from":[71,88,137],"Linux,":[72],"OpenSSL,":[73],"Wireshark":[74],"many":[76],"other":[77],"programs.":[79],"Then,":[80],"extract":[82],"statements":[83],"syntax":[86,103],"features":[87],"these":[89,111,138,157],"use":[92],"program":[93],"slicing":[94],"to":[95,99,132,145,170],"slice":[96],"them":[97],"according":[98],"categories":[101],"features.":[104],"On":[105],"top":[106],"slices,":[108],"represent":[110],"slices":[112],"graphs":[114,139],"characterize":[116],"data":[118],"dependency":[119,122],"control":[121],"between":[123,149],"statements.":[124],"Finally,":[125],"employ":[127],"networks":[131],"learn":[133],"hidden":[135],"leverage":[141],"Siamese":[143],"network":[144],"compute":[146],"similarity":[148],"functions,":[151],"thereby":[152],"assigning":[153],"IDs":[155],"The":[159],"experimental":[160],"results":[161],"show":[162],"proposed":[165],"effective":[168],"compared":[169],"existing":[171],"methods.":[172]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":2},{"year":2024,"cited_by_count":1}],"updated_date":"2026-03-27T14:29:43.386196","created_date":"2025-10-10T00:00:00"}