CWE-5J2EE Misconfiguration: Data Transmission Without Encryption

Description

Common consequences· 2

• Confidentiality — Read Application Data
• Integrity — Modify Application Data

Potential mitigations· 1

• [System Configuration]The product configuration should ensure that SSL or an encryption mechanism of equivalent strength and vetted reputation is used for all access-controlled pages.

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.