hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-24 04:36:35 +01:00
Code Issues Packages Projects Releases Wiki Activity

Apply suggestions from code review

Browse Source 
Co-authored-by: mc <42146119+mchammer01@users.noreply.github.com>
This commit is contained in:
Tony Torralba
2021-07-29 17:30:01 +02:00
parent 9c1021134a
commit 9f54b1065a
2 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
java/ql/src/Security/CWE/CWE-297/InsecureJavaMail.ql
View File

@@ -1,8 +1,8 @@
/**
* @name Insecure JavaMail SSL Configuration
* @description Java application configured to use authenticated mail session
* over SSL does not validate the SSL certificate to properly
* ensure that it is actually associated with that host.
* @description Configuring a Java application to use authenticated mail session
* over SSL without certificate validation
* makes the session susceptible to a man-in-the-middle attack.
* @kind problem
* @problem.severity warning
* @precision medium