Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

App is Encoding Sensitive Information Using Outdated or In- secure Cryptography #261

Open
arunSriramulaWYH opened this issue Jan 17, 2024 · 0 comments
Open

App is Encoding Sensitive Information Using Outdated or In- secure Cryptography #261

arunSriramulaWYH opened this issue Jan 17, 2024 · 0 comments

Comments

@arunSriramulaWYH
Copy link

Steps To Reproduce
Rource code should be inspected for uses of weak cryptographic algorithms. These inspections may also reveal the use of
weak cryptography by third party code. Please avoid the following weak cryptographic algorithms, EC4B D&RB D&R3B MD5B RHA1B
MD4B &CNB ' CNC.

zowRecureqs automated testing for this vulnerability analyjes CommonCrypto API re•uests that use easily decrypted algo-
rithms and then attempts to decode or decrypt sensitive data.

Business Impact
Weak cryptographic algorithms have well documented vulnerabilities that can cause issues relating to loss of confidentiality
or an inability to maintain the integrity of business sensitive processes. The use of outdated cryptography may also affect an
organijationqs regulatory and compliance certifications.

Recommended Fix
Do not use weak cryptographic algorithms to protect information and processes such as EC4B D&RB D&R3B MD5B RHA1B MD4B
&CNB ' CNC
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@arunSriramulaWYH