CERT
Skip to end of metadata
Go to start of metadata

There is no content with the specified labels

Information for Editors
To have a new guideline automatically listed above be sure to label it oop and recommendation.

Risk Assessment Summary

Rule

Severity

Likelihood

Remediation Cost

Priority

Level

OOP00-CPP

low

unlikely

medium

P2

L3

OOP01-CPP

low

unlikely

low

P3

L3

OOP02-CPP

medium

unlikely

medium

P4

L3

OOP03-CPP

medium

unlikely

low

P6

L2

OOP04-CPP

medium

unlikely

medium

P4

L3

OOP05-CPP

high

unlikely

high

P3

L3

OOP06-CPP

low

probable

medium

P4

L3

OOP07-CPP

low

probable

medium

P4

L3

OOP08-CPP

Medium

Unlikely

Medium

P4

L3

OOP09-CPP

low

unlikely

low

P3

L3

OOP36-CPP

low

unlikely

medium

P2

L3

 


1 Comment

  1. In the Rule column, the first row is now "OBJ38-CPP" but should be "OOP38-CPP".

    Also, there are two OOP38-CPP's that one can search for at present... I suppose that happens when an ID gets reassigned. Because we capture version numbers for compliance reasons, it would be helpful going forward if IDs were not reassigned.  Instead, whether a new guideline is created or an existing one must acquire a new ID (rule / recommendation swap, section swap, etc.), just assign a never-used-before number from the ID space for the section to which the guideline is to belong.  This can create gaps in numbering for a section, but that does not matter nearly so much IMHO.  Here's hoping this free advice is worth more than you paid for it.