The Mobile Application Security risk vector analyzes the security aspects of an organization’s mobile application offerings that are publicly available in official marketplaces, such as the Apple App Store and Google Play.
Finding Details
The details include the data in Findings, Diligence details, and also the following information:
Field | Description |
---|---|
App Grade | The CVSS-derived vulnerability score for the app, on a scale of 0.0 (better) to 10.0. |
Application Logo | The icon representing the app on the mobile device. |
Application Name❖ | The name of the mobile application. |
App Store | The permalink to the latest version on the App Store. |
App Version❖ | The version of the mobile application. |
Associated Risks | Tests that failed. |
CVSS Score | The severity of the vulnerability, on a scale of 0.1 (better) to 10.0 (worst). |
Description | The description of the application, provided by the publisher in the App Store. |
Domain❖ | The domain of the publisher. |
The publisher's support email. | |
OS❖ | The family of the detected operating system (OS). |
Pass/Fail | Mobile application analysis results (testing results). |
Publisher Link | The permalink to the publisher on the App Store. |
Publisher Name | The name of the publisher, as displayed in the App Store. |
Remediation Instructions❖ | Information for how to resolve a negative finding. |
Reports | |
Store Rating | The rating given by users within the App Store. |
Tested Risks | The number of performed tests, which can be different for each platform and analysis. |
URL | The URL registered by the publisher in the App Store. |
Version | The application version under analysis. |
- October 29, 2024: Findings Table navigation instructions moved from Risks to a new Findings section in the menu.
- May 27, 2021: Added finding details fields – App Grade, CVSS Score, & Pass/Fail.
- April 8, 2021: Updated fields and descriptions.
Feedback
0 comments
Please sign in to leave a comment.