Usage of permissive file permission ('other')

Overview

Rule ID: java_lang_file_permission_others
Applicable Languages: Java
Weakness ID: CWE-732

Description

Granting excessively permissive file permissions, particularly to the 'other' category, poses a significant security risk by potentially exposing sensitive information to unauthorized users.

Remediation Guidelines

Ensure file permissions are set as strictly as required. Prioritize assigning permissions to 'groups' rather than 'others' to mitigate the risk of unauthorized access
```
permissions.add(PosixFilePermission.GROUP_WRITE)
```

References

Java Files class
Java PosixFilePermission enum
CWE-732: Incorrect Permission Assignment for Critical Resource

Configuration

To omit this rule during a scan, and to provide you with continuous 24/7 code-level scanning, you can employ our SAST TOOL

PreviousUsage of naive Socket class to create SSL Socket NextUsage of small key size with Blowfish encryption

Last updated 3 months ago