Issue | A07:2021 – Identification and Authentication Failures Account Enumeration Possible Via Login PageA05 Security Misconfiguration - Swagger API Structure Exposed | ||||||
Priority |
| ||||||
EP Number | SD-76957693 | ||||||
Resolution | :Amend the warning text when entering an incorrect username/password from bold to normalOnly exposed on the DEV test environment. |
Issue | A04:2021 – Insecure Design Delete EPA/EPA Manager Request Susceptible to CSRF | ||||||
Priority |
| ||||||
EP Number |
SD-7694 | |
Resolution |
Issue | A07:2021 – Identification and Authentication Failures Account Enumeration Possible Via Login Page | ||||||
Priority |
| ||||||
EP Number | SD- |
7695 | |
Resolution: | Amend the warning text when entering an incorrect username/password from bold to normal |
Issue | Security Misconfiguration - Missing Sub resource Integrity For External Scripts | ||||||
Priority |
| ||||||
EP Number | SD-7696 | ||||||
Resolution: |
...
Issue | A05 - Security Misconfiguration - Stack Trace Available to Anonymous Users (dev site only) | ||||||
Priority |
| ||||||
EP Number | SD-7703 | ||||||
Resolution: | This only relates to the dev site |
Priority
| Status | ||||
|---|---|---|---|---|
|
Issue | A02 - Cryptographic Failures – Weak Ciphers Within TLSv1.2 Supported | ||||||
Priority |
| ||||||
EP Number | SD-7704 | Resolution: |
Issue
Resolution: |