64 lines
957 B
JSON
64 lines
957 B
JSON
{
|
|
"title": "Weak SSL\/TLS protocols should not be used",
|
|
"type": "VULNERABILITY",
|
|
"code": {
|
|
"impacts": {
|
|
"SECURITY": "HIGH"
|
|
},
|
|
"attribute": "TRUSTWORTHY"
|
|
},
|
|
"status": "ready",
|
|
"remediation": {
|
|
"func": "Constant\/Issue",
|
|
"constantCost": "2min"
|
|
},
|
|
"tags": [
|
|
"cwe",
|
|
"privacy"
|
|
],
|
|
"extra": {
|
|
"replacementRules": [
|
|
|
|
],
|
|
"legacyKeys": [
|
|
|
|
]
|
|
},
|
|
"defaultSeverity": "Critical",
|
|
"ruleSpecification": "RSPEC-4423",
|
|
"sqKey": "S4423",
|
|
"scope": "Main",
|
|
"securityStandards": {
|
|
"CWE": [
|
|
327,
|
|
326,
|
|
295
|
|
],
|
|
"OWASP": [
|
|
"A3",
|
|
"A6"
|
|
],
|
|
"OWASP Top 10 2021": [
|
|
"A2",
|
|
"A7"
|
|
],
|
|
"PCI DSS 3.2": [
|
|
"4.1",
|
|
"6.5.4"
|
|
],
|
|
"PCI DSS 4.0": [
|
|
"4.2.1",
|
|
"6.2.4"
|
|
],
|
|
"ASVS 4.0": [
|
|
"8.3.7",
|
|
"9.1.2",
|
|
"9.1.3"
|
|
]
|
|
},
|
|
"defaultQualityProfiles": [
|
|
"Sonar way"
|
|
],
|
|
"quickfix": "unknown"
|
|
}
|