Mobile Software Finding Messages Ingrid ⇤ Mobile Software Findings Support Status Indicators ❗Undetermined: Either there’s no version available, the finding cannot be identified, or both the OS and browser are unknown. The finding is evaluated as NEUTRAL. ❓Unknown: When either the OS or browser has been evaluated and the other is unknown. The finding is graded as the available grade. Messages There is a grace period of 28 days to allow for validating and updating software packages. During the grace period, findings have a FAIR grade. Findings observed after the end of the grace period and less than 365 days after the end of support have a WARN grade. Message Description Remediation Instructions Finding Grade (OS + Browser Support Status) Neutral Operating System and Unknown Browser The operating system and browser versions could not be determined. If obfuscation of the browser and operating system version is intentional, ensure an update strategy for browsers and operating systems is in place. ❗OS (NEUTRAL) + ❗Browser (NEUTRAL) = Neutral Operating System and Unsupported Browser The operating system version could not be determined and the browser is not supported. Ensure the latest version of the browser for that operating system is installed. ❗OS (NEUTRAL) + Unsupported Browser (FAIR) = ❗OS (NEUTRAL) + Unsupported Browser (WARN) = ❗OS (NEUTRAL) + Unsupported Browser (BAD) = Supported Operating System and Browser The operating system and browser are both supported. N/A Supported OS (GOOD) + Supported Browser (GOOD) = Supported Operating System and Unknown Browser The operating system is supported and the browser could not be recognized. If obfuscation of the browser version is unintentional, ensure end-users are using approved mobile applications in order to be able to analyze the supported (or unsupported) status of those applications. Supported OS (GOOD) + ❓Browser (NEUTRAL) = Supported Operating System and Unsupported Browser The operating system is supported and the browser is not supported. Ensure the latest version of the browser for that operating system is installed. Supported OS (GOOD) + Unsupported Browser (FAIR) = Supported OS (GOOD) + Unsupported Browser (WARN) = Supported OS (GOOD) + Unsupported Browser (BAD) = Unknown Browser and Operating System The browser and operating system could not be recognized. If obfuscation of the browser and operating system version is intentional, ensure an update strategy for browsers and operating systems is in place. ❓OS + ❓Browser = Unknown Operating System and Browser The browser and operating system could not be recognized. If obfuscation of the browser and operating system is intentional, ensure an update strategy for browsers and operating systems is in place. ❓OS + ❓Browser = Unknown Operating System and Supported Browser The operating system details could not be recognized and the browser is supported. If obfuscation of the operating system version is intentional, for which there is no penalty, ensure an operating system update strategy is in place. ❓OS + Supported Browser (GOOD) = Unknown Operating System and Unsupported Browser The operating system is unknown and the browser is unsupported. Ensure the latest version of the operating system is installed. After that, install the latest supported version of the desired browser. ❓OS + Unsupported Browser (FAIR) = Unsupported Operating System and Browser The operating system and browser are both not supported. Ensure the latest version of the operating system is installed. After that, install the latest supported version of the desired browser. Unsupported OS (FAIR) + Unsupported Browser (WARN) = Unsupported OS (FAIR) + Unsupported Browser (BAD) = Unsupported OS (WARN) + Unsupported Browser (FAIR) = Unsupported OS (WARN) + Unsupported Browser (BAD) = Unsupported OS (BAD) + Unsupported Browser (FAIR) = Unsupported OS (BAD) + Unsupported Browser (WARN) = Unsupported Operating System and Supported Browser The operating system is not supported and the browser is the latest supported version for that OS. Ensure the latest version of the operating system is installed. After that, install the latest supported version of the desired browser. Unsupported OS (FAIR) + Supported Browser (GOOD) = Unsupported OS (WARN) + Supported Browser (GOOD) = Unsupported OS (BAD) + Supported Browser (GOOD) = Unsupported Operating System and Unknown Browser The operating system is not supported and the browser information could not be determined. Update the operating system to the latest version. Unsupported OS (FAIR) + ❓Browser (NEUTRAL) = Unsupported OS (WARN) + ❓Browser (NEUTRAL) = Unsupported OS (BAD) + ❓Browser (NEUTRAL) = October 11, 2023: FAIR finding behavior allows 28 days for validating and updating software. September 12, 2023: Separated Desktop Software to its own page. July 18, 2023: Published. Related articles DNSSEC Finding Messages How are the Desktop Software and Mobile Software Risk Vectors Observed? How is the Mobile Software Risk Vector Assessed? Risk Program Setup: Tier Settings Web Application Header Finding Grades Feedback 0 comments Please sign in to leave a comment.