cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

External audit team has identified one vulnerability on “dtCookie” .KPMG Test team observed that it was possible to manipulate the cookie value by making changes to dtcookie value.

mohit
Inactive
2 REPLIES 2

Babar_Qayyum
Leader

Hello Mohit,

The chance that such an attack could be successful is low, because a Web Server Agent checks and validates all incoming data. If incoming data does not match reference data (for example, time stamps, request IDs, and cookie information), the data is immediately discarded.

Review the below documentation which is about the 'Security and compliance whitepaper' and also share with the audit team.

https://www.dynatrace.com/support/doc/appmon/admin...

Regards,

Babar

mohit
Inactive

@Klaus E.

@Dominik P


Please look into it.


Regards,

Mohit