67 lines
1.0 KiB
JSON
67 lines
1.0 KiB
JSON
{
|
|
"title": "Server certificates should be verified during SSL\/TLS connections",
|
|
"type": "VULNERABILITY",
|
|
"code": {
|
|
"impacts": {
|
|
"SECURITY": "HIGH"
|
|
},
|
|
"attribute": "TRUSTWORTHY"
|
|
},
|
|
"status": "ready",
|
|
"remediation": {
|
|
"func": "Constant\/Issue",
|
|
"constantCost": "5min"
|
|
},
|
|
"tags": [
|
|
"cwe",
|
|
"privacy",
|
|
"ssl"
|
|
],
|
|
"extra": {
|
|
"replacementRules": [
|
|
|
|
],
|
|
"legacyKeys": [
|
|
|
|
]
|
|
},
|
|
"defaultSeverity": "Critical",
|
|
"ruleSpecification": "RSPEC-4830",
|
|
"sqKey": "S4830",
|
|
"scope": "Main",
|
|
"securityStandards": {
|
|
"CWE": [
|
|
295
|
|
],
|
|
"OWASP": [
|
|
"A6",
|
|
"A3"
|
|
],
|
|
"OWASP Top 10 2021": [
|
|
"A2",
|
|
"A5",
|
|
"A7"
|
|
],
|
|
"PCI DSS 3.2": [
|
|
"4.1",
|
|
"6.5.4",
|
|
"6.5.10"
|
|
],
|
|
"PCI DSS 4.0": [
|
|
"4.2.1",
|
|
"6.2.4"
|
|
],
|
|
"ASVS 4.0": [
|
|
"1.9.2",
|
|
"9.2.1"
|
|
],
|
|
"STIG ASD_V5R3": [
|
|
"V-222550"
|
|
]
|
|
},
|
|
"defaultQualityProfiles": [
|
|
"Sonar way"
|
|
],
|
|
"quickfix": "unknown"
|
|
}
|