Use of Deprecated Component

Use of Deprecated Component

Risk: high

Description

The application is using a deprecated component. New vulnerabilities will not be fixed and hackers might succeed in exploiting this weakness.

Recommendation

Switch to an up-to-date component/library which has security fixes for newly identified vulnerabilities.

Links

• CWE-477: Use of Obsolete Function
• Top 10 A9-Using Components with Known Vulnerabilities

Standards

• OWASP_MASVS_L1:
  • MSTG_CODE_5
• OWASP_MASVS_L2:
  • MSTG_CODE_5
• PCI_STANDARDS:
  • REQ_6_2
  • REQ_6_3
  • REQ_11_3