Description
CWE: 321 Use of Hard-coded Cryptographic Key
BadSource: Copy a hardcoded value into cryptoKey
GoodSource: Read cryptoKey from the console
BadSink : Hash cryptoKey and use the value to encrypt a string
Flow Variant: 82 Data flow: data passed in a parameter to an virtual method called via a pointer
Flaws
Test Suites
Documentation
Have any comments on this test case? Please, send us an email.