Security Performance Management
Continuous Monitoring
Cyber Insurance
National Cybersecurity

Articles in this section

See more

Mobile Application Security Findings

Avatar
Ingrid
Follow
  • May 27, 2021: Added finding details fields – App Grade, CVSS Score, & Pass/Fail.
  • April 8, 2021: Updated fields and descriptions.
  • January 12, 2021: View finding details from the Findings page.

⇤ Diligence Findings

The Mobile Application Security risk vector analyzes the security aspects of an organization’s mobile application offerings that are publicly available in official marketplaces, such as the Apple App Store and Google Play.

Navigation Options

SPM App: Risks ➔ Findings

CM App: Vendor Risk ➔ Findings

Insurance App: Client Risk ➔ Findings

National Cybersecurity: Vendor Risk ➔ Findings

Bitsight API: GET /v1/companies/entity_guid/findings?risk_vector=mobile_application_security

Finding Details

The details include the data in Findings, Diligence details, and also the following information:

❖ This field can be included in the table from the Customize Columns option.

Field Description
App Grade The CVSS-derived vulnerability score for the app, on a scale of 0.0 (better) to 10.0.
Application Logo The icon representing the app on the mobile device.
Application Name❖ The name of the mobile application.
App Store The permalink to the latest version on the App Store.
App Version❖ The version of the mobile application.
Associated Risks Tests that failed.
CVSS Score The severity of the vulnerability, on a scale of 0.1 (better) to 10.0 (worst).
Description The description of the application, provided by the publisher in the App Store.
Domain❖ The domain of the publisher.
Email The publisher's support email.
OS❖ The family of the detected operating system (OS).
Pass/Fail Mobile application analysis results (testing results).
Publisher Link The permalink to the publisher on the App Store.
Publisher Name The name of the publisher, as displayed in the App Store.
Remediation Instructions❖ Information for how to resolve a negative finding.
Reports  
Store Rating The rating given by users within the App Store.
Tested Risks The number of performed tests, which can be different for each platform and analysis.
URL The URL registered by the publisher in the App Store.
Version The application version under analysis.

Related articles