Basic Auth SOAP Requests setting should be enabled

Rule ID

Impact

Without appropriate authorization configured on the datasource SOAP requests, an unauthorized user can get access to sensitive content/data on the target instance.

Remediation

Set the system property "glide.basicauth.required.soap" to true to enforce soap requests authorization

Time to fix

15 min

References

This rule is linked to Common Weakness Enumeration CWE-862 Missing Authorization.