CWE-5: J2EE Misconfiguration: Data Transmission Without Encryption
ID
CWE-5
Abstraction
Variant
Structure
Simple
Status
Draft
Information sent over a network can be compromised while in transit. An attacker may be able to read or modify the contents if the data are sent in plaintext or are weakly encrypted.
Modes of Introduction
Phase | Note |
---|---|
Implementation | |
Operation |
Applicable Platforms
Type | Class | Name | Prevalence |
---|---|---|---|
Language | Java |
Loading...