SEI CERT Oracle Coding Standard for Java

Space shortcuts

Page tree

Versions Compared

Old Version 47

changes.mady.by.user Robert Seacord (Manager)

Saved on

compared with

New Version 48

changes.mady.by.user Shannon Haas

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Rule

Severity

Likelihood

Remediation Cost

Priority

Level

SEC06-J

high

probable

medium

P12

L1

Automated Detection

TODO

Related Guidelines

<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="09093aa21454162c-23e68f89-474b48a3-876da4cd-56ff5b038d07ee18e0feab34"><ac:plain-text-body><![CDATA[

[ISO/IEC TR 24772:2010

http://www.aitcnet.org/isai/]

"Authentication Logic Error [XZO]"

]]></ac:plain-text-body></ac:structured-macro>

MITRE CWE

CWE ID 302, "Authentication Bypass by Assumed-Immutable Data"

 

CWE ID 470, "Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')"

...

<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="9c19690bf09415e6-8e7e867c-45a24c4a-bf6da8e1-487f9a97129e35abb7e41906"><ac:plain-text-body><![CDATA[

[[Sterbenz 2006

AA. Bibliography#Sterbenz 06]]

]]></ac:plain-text-body></ac:structured-macro>

...