CX Information_Exposure_Through_an_Error_Message @ src/main/java/org/cysecurity/cspf/jvl/controller/s3.java [master]

satyamchaurasiapersistent commented 2 years ago

Information_Exposure_Through_an_Error_Message issue exists @ src/main/java/org/cysecurity/cspf/jvl/controller/s3.java in branch master

Method saveCC, at line 31 of src\main\java\org\cysecurity\cspf\jvl\controller\s3.java, handles an Exception or runtime Error e. During the exception handling code, the application exposes the exception details to printStackTrace, in method saveCC of src\main\java\org\cysecurity\cspf\jvl\controller\s3.java, line 34.

Severity: Low

CWE:209

Vulnerability details and guidance

Checkmarx

Training Recommended Fix

Lines: 35 31

Code (Line #35):

        } catch (SdkClientException e) {

Code (Line #31):

        } catch (AmazonServiceException e) {

satyamchaurasiapersistent commented 2 years ago

Issue still exists.

satyamchaurasiapersistent commented 2 years ago

Issue still exists.

satyamchaurasiapersistent commented 2 years ago

Issue still exists.

satyamchaurasiapersistent commented 2 years ago

Issue still exists.

satyamchaurasiapersistent / JavaVulnerableLab

CX Information_Exposure_Through_an_Error_Message @ src/main/java/org/cysecurity/cspf/jvl/controller/s3.java [master] #70