DISA STIG version 5 IDs mapped to Klocwork C# checkers

CS.RCA   Risky cryptographic algorithm used

CS.RCA   Risky cryptographic algorithm used

CS.HCC   Use of hardcoded credentials

CS.HCC.PWD   Use of a hardcoded password

CS.HCC.USER   Use of a hardcoded user name

CS.RCA   Risky cryptographic algorithm used

CS.HCC   Use of hardcoded credentials

CS.HCC.PWD   Use of a hardcoded password

CS.HCC.USER   Use of a hardcoded user name

CS.RCA   Risky cryptographic algorithm used

CS.HCC   Use of hardcoded credentials

CS.HCC.PWD   Use of a hardcoded password

CS.HCC.USER   Use of a hardcoded user name

CS.RLK   Resource leak

CS.RLK   Resource leak

CS.RCA   Risky cryptographic algorithm used

CS.RCA   Risky cryptographic algorithm used

CS.RCA   Risky cryptographic algorithm used

CS.RCA   Risky cryptographic algorithm used

CS.SV.TAINTED.ALLOC_SIZE   Use of unvalidated integer in memory allocation

CS.XSS.PERSIST   Cross-site Scripting Persisting Vulnerability

CS.XSS.REFLECT   Cross-site Scripting Reflecting Vulnerability

CS.CSRF.ATTR.NOATTR   AntiForgery attribute should be added to class or method.

CS.CSRF.ATTR.POST   AntiForgery attribute should be added to class or method.

CS.CSRF.VALIDATE   Validation of 'POST request data access' is not done.

CS.CSRF.VSUK.CONSTASSIGN   A const string is assigned to property 'ViewStateUserKey'.

CS.CSRF.VSUK.NOASSIGN   Property 'ViewStateUserKey' is not set.

CS.SV.TAINTED.INJECTION   C# command injection

CS.SV.TAINTED.ALLOC_SIZE   Use of unvalidated integer in memory allocation

CS.SV.TAINTED.BINOP   Use of unvalidated integer in binary operation

CS.SV.TAINTED.CALL.BINOP   Use of unvalidated integer in binary operation

CS.SV.TAINTED.CALL.INDEX_ACCESS   Use of unvalidated integer as array index by function call

CS.SV.TAINTED.CALL.LOOP_BOUND   Use of unvalidated integer in loop condition through a function call

CS.SV.TAINTED.FMTSTR   Use of unvalidated data in a format string

CS.SV.TAINTED.INDEX_ACCESS   Use of unvalidated integer as array index

CS.SV.TAINTED.LOOP_BOUND   Use of unvalidated integer in loop condition

CS.SV.TAINTED.PATH_TRAVERSAL   Use of unvalidated data in a path traversal

CS.SV.USAGERULES.PERMISSIONS   Use of Privilege Elevation

CS.SV.TAINTED.ALLOC_SIZE   Use of unvalidated integer in memory allocation

CS.SV.TAINTED.BINOP   Use of unvalidated integer in binary operation

CS.SV.TAINTED.CALL.BINOP   Use of unvalidated integer in binary operation

CS.SV.TAINTED.CALL.INDEX_ACCESS   Use of unvalidated integer as array index by function call

CS.SV.TAINTED.CALL.LOOP_BOUND   Use of unvalidated integer in loop condition through a function call

CS.SV.TAINTED.DESERIALIZATION   Use of unvalidated integer during deserialization in object creation

CS.SV.TAINTED.FMTSTR   Use of unvalidated data in a format string

CS.SV.TAINTED.INDEX_ACCESS   Use of unvalidated integer as array index

CS.SV.TAINTED.LOOP_BOUND   Use of unvalidated integer in loop condition

CS.SV.TAINTED.PATH_TRAVERSAL   Use of unvalidated data in a path traversal

CS.SV.TAINTED.BINOP   Use of unvalidated integer in binary operation

CS.SV.TAINTED.CALL.BINOP   Use of unvalidated integer in binary operation

CS.SV.TAINTED.CALL.INDEX_ACCESS   Use of unvalidated integer as array index by function call

CS.SV.TAINTED.CALL.LOOP_BOUND   Use of unvalidated integer in loop condition through a function call

CS.SV.TAINTED.INDEX_ACCESS   Use of unvalidated integer as array index

CS.SV.TAINTED.LOOP_BOUND   Use of unvalidated integer in loop condition

CS.BANNED.INVOKE   Prefer asynchronous calls to synchronized calls

CS.RCA   Risky cryptographic algorithm used

CS.RCA   Risky cryptographic algorithm used