hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-25 16:55:19 +02:00
Code Issues Packages Projects Releases Wiki Activity

Set CWE-134 from 9.3 to 7.3 CVSS score for memory safe languages

Browse Source 
- Sync up to score given to javascript/ruby
This commit is contained in:
Chad Bentz
2025-05-19 14:43:08 -04:00
committed by GitHub
parent e6235a57e7
commit 8a81aa1762
3 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
java/ql/src/Security/CWE/CWE-134/ExternallyControlledFormatString.ql
View File

@@ -3,7 +3,7 @@
* @description Using external input in format strings can lead to exceptions or information leaks.
* @kind path-problem
* @problem.severity error
* @security-severity 9.3
* @security-severity 7.3
* @precision high
* @id java/tainted-format-string
* @tags security