💼 6.5.8 Improper access control.
- Contextual name: 💼 6.5.8 Improper access control.
- ID:
/frameworks/pci-dss-v3.2.1/06/05/08 - Located in: 💼 6.5 Address common coding vulnerabilities in software-development processes.
Description​
Such as insecure direct object references, failure to restrict URL access, directory traversal, and failure to restrict user access to functions
Similar​
- Sections
/frameworks/pci-dss-v4.0/06/02/04
- Internal
- ID:
dec-c-7121c4b2
- ID:
Similar Sections (Take Policies From)​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 PCI DSS v4.0 → 💼 6.2.4 Software engineering techniques or other methods are defined and in use by software development personnel to prevent or mitigate common software attacks and related vulnerabilities in bespoke and custom software. |
Similar Sections (Give Policies To)​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 PCI DSS v4.0 → 💼 6.2.4 Software engineering techniques or other methods are defined and in use by software development personnel to prevent or mitigate common software attacks and related vulnerabilities in bespoke and custom software. |
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|