List of sensitive data transmitted via the CFURLConnection API. It categorizes the data by type, provides the actual values recovered, indicates the format (plain text or encoded), and identifies the target URL and the data segment containing the sensitive value.
Finding Description
List of sensitive data transmitted via the
CFURLConnection
API. It categorizes the data by type, provides the actual values recovered, indicates the format (plain text or encoded), and identifies the target URL and the data segment containing the sensitive value.Risk and Regulatory Information
Severity: info
Policy Category: Informational
Application
See more detail in the NowSecure Report
Evidence
| Scope | Type | Format | Value | Full URL | Searched Data | |---|---|---|---|---|---| | NSURLSessionTask | devinfo:iosVersion | plaintext | 17.1.1 | https://access.active911.com/interface/ios_api_1.4.php | operation=register&device_key=&device_id=0&api_key=zNEKvlKlsw1IVgsvqS7wRPw&client_version=17.1.1%20v1.6.143&apns_token=f4cfdf7e80874dc1f9330921b17fe883acd81be308bdf03608a13248a3759dca | | NSURLSessionTask | automation:email | plaintext | nsDefaultEmail@nowsecure.com | https://access.active911.com/interface/ios_api_1.4.php | email=nsDefaultEmail@nowsecure.com&password=D0n7p4nic%2342!&hardware_id=53EECE96-537F-4BF4-B60F-B2A28E53A9D3&push_token=f4cfdf7e80874dc1f9330921b17fe883acd81be308bdf03608a13248a3759dca&production=true&operation=authenticate | | NSURLSessionTask | automation:password | urlenc | D0n7p4nic%2342! | https://access.active911.com/interface/ios_api_1.4.php | email=nsDefaultEmail@nowsecure.com&password=D0n7p4nic%2342!&hardware_id=53EECE96-537F-4BF4-B60F-B2A28E53A9D3&push_token=f4cfdf7e80874dc1f9330921b17fe883acd81be308bdf03608a13248a3759dca&production=true&operation=authenticate | ... and 6 more