...
But there are others rules not directly related to a security issue but that “can” lead to a security issue (if a hacker would know how to exploit it). A typical example is a buffer management error that would cause a segmentation fault but that could be exploited by a hacker to inject malicious code to gain access to the system).
| Info |
|---|
To group both kind of defects , Kiuwan introduces the concept |
...
of Vulnerability, i.e. a source code defect that can lead, directly o indirectly, to a security issue. Following this approach, Kiuwan Code Security inspects your source code by applying all the rules that can (directly or not) highlight a security issue. That’s the reason why you can find non-Security rules in Kiuwan Code Security. |
Vulnerability types
Every Vulnerability detected by Kiuwan is classified under a category (i.e. Vulnerability Type).
...