Non-encrypted confidential information
Description
Confidential information is stored in plain text allowing an attacker to view it without any type of encryption.
Impact
Obtain sensitive information that may compromise system resources.
Recommendation
Encrypt all sensitive information that is transported or stored within the application according to the organizations policies.
Threat
Anonymous attacker with access to the source-code from the Internet.
Expected Remediation Time
⏱️ 90 minutes.
Details
Why
When secret credentials are compromised, we always generate a vulnerability report either the credentials are mocks, or are functional only in specific scenarios such as local environments. The risk of this scenario is usually considered in the severity tab. For local environment credentials the risk is low but not zero.
Hence to solve this vulnerability we recommend to remove the credentials from the source code, change the compromised credentials and ideally remove the credentials from the git log. In some cases the last recommendation cannot be applied to avoid traceability issues. If that's the case, in addition to removing the credentials from the code, we require a customer confirmation that the credentials were changed to close the vulnerability.
Requirements
134 - Store passwords with salt135 - Passwords with random salt185 - Encrypt sensitive information229 - Request access credentials264 - Request authentication300 - Mask sensitive dataRules
Http Sensitive Fields In Response BodyPhp User Input Storage Sensitive DataGo Gorm Plaintext Storage Of PasswordGo Sql Plaintext Storage Of PasswordTypescript Insecure Sensitive Information File StorageJavascript Insecure Sensitive Information File StorageJava Null Cipher UsedSwift Cloud Information CompromisedScala Spring Plaintext Storage Sensitive DataScala Play Plaintext Storage Sensitive DataC Sharp Insecure Cookie Data Storage