Web Application Security Assessment:
When categorizing vulnerabilities for a Code Review Report that enumerates them, what model should an auditor use?
Answer:
The auditor will utilize the confidentiality, integrity, and availability (CIA) model to properly characterize every one of the announced vulnerabilities' impacts on the business. Seriousness levels would be assembled (high, medium, and low, with high recorded first).
Rate the answer( as much needed for me) if it helps else let me know your doubts. Thank you!!!!
Web Application Security Assessment: When categorizing vulnerabilities for a Code Review Report that enumerates them, what...