OSWAP 2013z
Date: 20 Feb 2025
Q) What are application security risks ?
- SLA : you need to close the vulnerability as soon as possible (the timeline) , the timeline to fix the issues :
→ critical : 7 days or immediately
→ high : 30 days
→ medium: 60 days
→ low : 90 days - Threat agent : who is performing the attack
- attack vector : what he is using to perform the attack
Q) What's My risk? (you have to give your client the risk report, hence imp)
![[attachments/owasp-top-10-2013.pdf]]