Skip to content

Redis Library detected

Redis Library detected

Description

Redis library is not suited for mobile applications since the Redis framework only has one user and the application needs to be given access to the users credentials

Recommendation

Replace direct access to Redis with a secure API with proper authentication and authorization.

Standards

  • CWE_TOP_25:
    • CWE_287
    • CWE_862
  • PCI_STANDARDS:
    • REQ_2_2
    • REQ_3_5
    • REQ_6_2
    • REQ_7_3
  • OWASP_MASVS_v2_1:
    • MASVS_AUTH_1