Code Security Report: 10 total findings #19

mend-for-github-com · 2024-06-26T22:29:39Z

Code Security Report

Scan Metadata

Latest Scan: 2024-09-05 05:21pm
Total Findings: 10 | New Findings: 7 | Resolved Findings: 7
Tested Project Files: 158
Detected Programming Languages: 1 (C/C++ (Beta))

Check this box to manually trigger a scan

Finding Details

Severity

Vulnerability Type

CWE

File

Data Flows

Date

Medium

Heap Inspection

CWE-244

device_info.h:47

1

2024-07-17 04:21pm

Vulnerable Code

nx-lyve-cloud-plugin/src/lib/nx/sdk/helpers/device_info.h

Line 47 in 2fe0767

std::string m_password;

Secure Code Warrior Training Material

Medium

Heap Inspection

CWE-244

child_process.h:39

1

2024-08-30 11:29pm

Vulnerable Code

nx-lyve-cloud-plugin/src/lib/cloudfuse/child_process.h

Line 39 in 2fe0767

processReturn dryRun(const std::string passphrase);

Secure Code Warrior Training Material

Medium

Heap Inspection

CWE-244

engine.h:52

1

2024-08-29 11:46pm

Vulnerable Code

nx-lyve-cloud-plugin/src/plugin/settings/engine.h

Line 52 in 2fe0767

std::string m_passphrase;

Secure Code Warrior Training Material

Medium

Heap Inspection

CWE-244

engine.cpp:262

1

2024-08-30 10:35pm

Vulnerable Code

nx-lyve-cloud-plugin/src/plugin/settings/engine.cpp

Line 262 in 2fe0767

std::string secretKey = values[kSecretKeyPasswordFieldId];

Secure Code Warrior Training Material

Medium

Heap Inspection

CWE-244

child_process.h:66

1

2024-08-30 11:29pm

Vulnerable Code

nx-lyve-cloud-plugin/src/lib/cloudfuse/child_process.h

Line 66 in 2fe0767

processReturn encryptConfig(const std::string passphrase);

Secure Code Warrior Training Material

Medium

Heap Inspection

CWE-244

child_process.h:40

1

2024-08-30 11:29pm

Vulnerable Code

nx-lyve-cloud-plugin/src/lib/cloudfuse/child_process.h

Line 40 in 2fe0767

processReturn mount(const std::string passphrase);

Secure Code Warrior Training Material

Medium

Heap Inspection

CWE-244

engine.cpp:406

1

2024-08-30 10:35pm

Vulnerable Code

nx-lyve-cloud-plugin/src/plugin/settings/engine.cpp

Line 406 in 2fe0767

std::string secretKey = values[kSecretKeyPasswordFieldId];

Secure Code Warrior Training Material

Medium

Heap Inspection

CWE-244

engine.cpp:42

1

2024-08-30 04:10pm

Vulnerable Code

nx-lyve-cloud-plugin/src/plugin/settings/engine.cpp

Line 42 in 2fe0767

static std::string generatePassphrase();

Secure Code Warrior Training Material

Medium

Heap Inspection

CWE-244

settings_model.h:22

1

2024-08-30 11:29pm

Vulnerable Code

nx-lyve-cloud-plugin/src/plugin/settings/settings_model.h

Line 22 in 2fe0767

static const std::string kSecretKeyPasswordFieldId = "secretKey";

Secure Code Warrior Training Material

Medium

Heap Inspection

CWE-244

engine.cpp:512

1

2024-08-30 10:35pm

Vulnerable Code

nx-lyve-cloud-plugin/src/plugin/settings/engine.cpp

Line 512 in 2fe0767

std::string generatePassphrase()

Secure Code Warrior Training Material

mend-for-github-com bot added the Mend: code security findings Code security findings detected by Mend label Jun 26, 2024

mend-for-github-com bot changed the title ~~Code Security Report: 10 total findings~~ Code Security Report: 15 total findings Jul 9, 2024

mend-for-github-com bot changed the title ~~Code Security Report: 15 total findings~~ Code Security Report: 7 total findings Aug 15, 2024

mend-for-github-com bot changed the title ~~Code Security Report: 7 total findings~~ Code Security Report: 10 total findings Aug 23, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Code Security Report: 10 total findings #19

Code Security Report: 10 total findings #19

mend-for-github-com bot commented Jun 26, 2024 •

edited

Loading

Code Security Report: 10 total findings #19

Code Security Report: 10 total findings #19

Comments

mend-for-github-com bot commented Jun 26, 2024 • edited Loading

Code Security Report

Scan Metadata

Finding Details

mend-for-github-com bot commented Jun 26, 2024 •

edited

Loading