Mobile Application Security Findings

The Mobile Application Security risk vector analyzes the security aspects of an organization’s mobile application offerings that are publicly available in official marketplaces, such as the Apple App Store and Google Play.

Bitsight API: GET: Mobile Application Security Finding Details [/v1/companies/company_guid/findings?risk_vector=mobile_application_security

Finding Details

The details include the data in Findings, Diligence details, and also the following information:

❖ This field can be included in the table from the Customize Columns option.

App Grade

The CVSS-derived vulnerability score for the app, on a scale of 0.0 (better) to 10.0.

Application Logo

The icon representing the app on the mobile device.

Application Name

❖ The name of the mobile application.

App Store

The permalink to the latest version on the App Store.

App Version

❖ The version of the mobile application.

Associated Risks

Tests that failed.

CVSS Score

The severity of the vulnerability, on a scale of 0.1 (better) to 10.0 (worst).

Description

The description of the application, provided by the publisher in the App Store.

Domain

❖ The domain of the publisher.

Email

The publisher's support email.

OS

❖ The family of the detected operating system (OS).

Pass/Fail

Mobile application analysis results (testing results).

Publisher Link

The permalink to the publisher on the App Store.

Publisher Name

The name of the publisher, as displayed in the App Store.

Remediation Instructions

❖ Information for how to resolve a negative finding.

Reports

 

Store Rating

The rating given by users within the App Store.

Tested Risks

The number of performed tests, which can be different for each platform and analysis.

URL

The URL registered by the publisher in the App Store.

Version

The application version under analysis.