Crypto WeakTLSProtocol

A HostnameVerifier that accept any host are often use because of certificate reuse on many hosts. As a consequence, this is vulnerable to Man-in-the-middleattacks attacks since the client will trust any certificate.

IndexedPublic repositoryMediumHigh confidenceVerifiedMITscala

greprules fetch gitlab-sast-scala-crypto-rule-weaktlsprotocol --engine opengrep

Description

A HostnameVerifier that accept any host are often use because of certificate reuse on many hosts. As a consequence, this is vulnerable to Man-in-the-middleattacks attacks since the client will trust any certificate.

Detection target

Not provided

Recommended fix

Not provided

False-positive notes

Not provided

License: MIT
Source context: Public repository
Source: https://gitlab.com/gitlab-org/security-products/sast-rules
Validation status: Verified
Trust signals: 99 downloads
0 direct99 via packs
· 0 stars · Trust score 90How trust works
Included packs: 2 packs

Community feedback

Sign in to report false positives, mark this rule useful, or suggest metadata improvements.

Mark useful Report false positive Suggest metadata