tsunez
commented
4 years ago Issue still exists.
SUMMARY
Issue has 1 vulnerability/vulnerabilities left to be fixed (Please scroll to the top for more information)
Open tsunez opened 4 years ago
tsunez
commented
4 years ago Issue still exists.
Issue has 1 vulnerability/vulnerabilities left to be fixed (Please scroll to the top for more information)
tsunez
commented
4 years ago Issue still exists.
Issue has 1 vulnerability/vulnerabilities left to be fixed (Please scroll to the top for more information)
Unscrubbed_Secret issue exists @ iGoat-Swift/iGoat-Swift/Source/Exercises/InsecureLocalDataStorage/CoreData/KeychainUsage/KeychainDumper.swift in branch master
Method "" at line 9 of iGoat-Swift\iGoat-Swift\Source\Exercises\InsecureLocalDataStorage\CoreData\KeychainUsage\KeychainDumper.swift defines passwordInGenp, which is designated to contain user passwords. However, while plaintext passwords are later assigned to passwordInGenp, this variable is never cleared from memory.
Severity: Low
CWE:226
Vulnerability details and guidance
Checkmarx
Recommended Fix
Lines: 9
Code (Line #9):