Revert "Downgrade BREACH attack to MEDIUM severity (as it depends on many things)"

This reverts commit 3d2666ab79.
2025-01-03 23:39:45 +01:00 · 2017-04-25 16:32:06 +02:00 · 2017-04-25 16:32:06 +02:00 · c3fd0249f5
commit c3fd0249f5
parent bd4575e14d
1 changed files with 1 additions and 1 deletions
--- a/testssl.sh
+++ b/testssl.sh
@ -9548,7 +9548,7 @@ run_breach() {
          pr_svrty_high "potentially NOT ok, uses $result HTTP compression."
          outln "$disclaimer"
          outln "$spaces$when_makesense"
-          fileout "breach" "MEDIUM" "BREACH: potentially VULNERABLE, uses $result HTTP compression. $disclaimer ($when_makesense)" "$cve" "$cwe" "$hint"
+          fileout "breach" "HIGH" "BREACH: potentially VULNERABLE, uses $result HTTP compression. $disclaimer ($when_makesense)" "$cve" "$cwe" "$hint"
          ret=1
     fi
     # Any URL can be vulnerable. I am testing now only the given URL!