Vulnerabilities / GraphQL Introspection enabled

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
↓

Severity	low
Correlatable	sast
CWE Name	GraphQL Introspection enabled
CWE ID	CWE-200
CWE Score	5.3
Compliance	OWASP TOP10 -> A5 ISO 27001 -> A.8.9 HIPAA -> 164.306(a)
CVSS
Attack Vector	Network
Attack Complexity	Low
Privileges Required	None
User Interaction	None
Scope	Unchanged
Confidentiality Impact	Low
Integrity Impact	None
Availability Impact	None

GraphQL Introspection enabled