Documentation - V-222606

V-222606

Application Security and Development Security Technical Implementation Guide

CAT II

Title

The application must validate all input.

Description

<VulnDiscussion>Checking the valid syntax and semantics of information system inputs (e.g., character set, length, numerical range, and acceptable values) verifies that inputs match specified definitions for format and content. Software applications typically follow well-defined protocols that use structured messages (i.e., commands or queries) to communicate between software modules or system components. Structured messages can contain raw or unstructured data interspersed with metadata or co...

Fix Text (Documentation Requirement)

Design and configure the application to validate input prior to executing commands.

View Full STIG Details →

Documentation Status

Status

Documented Verified - link to a ship document Awaiting Review Evidence submitted, needs verification Pending Needs documentation Not Required Documentation not needed Not Applicable STIG doesn't apply

Notes (Optional)

Cancel