Uploaded image for project: 'Policy Framework'
  1. Policy Framework
  2. POLICY-1095

Potential security hole in GroupValidationResult

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Low Low
    • Casablanca Release
    • Casablanca Release, Dublin Release
    • None
    • None

      There is an item identified by Fortify security scan:

      common-parameters/src/main/java/org/onap/policy/common/parameters/GroupValidationResult.java

      The call to method setAccessible() on line 60 changes an access specifier.

      Recommendations:

      Access specifiers should only be changed by a privileged class using arguments that an attacker cannot set. All occurrences should be examined carefully.

       

        1. image-2018-09-06-15-46-15-833.png
          image-2018-09-06-15-46-15-833.png
          55 kB

            liamfallon liamfallon
            jrh3 jrh3
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: