COBOL
In this article, we cover COBOL support and vulnerability detection for Mend SAST.
Mend SAST-supported COBOL file types
Note: ‘Secondary’ file extensions will only be scanned if at least one file with any of the other ‘Primary’ file extensions is present to identify the language as the relevant language.
File Type | Extension Type |
|---|---|
.cbl | Primary |
.cl2 | Primary |
.cob | Primary |
.cpy | Primary |
.eco | Secondary |
.pco | Primary |
.sqb | Secondary |
Mend SAST-supported COBOL frameworks
Framework |
|---|
N/A |
Mend SAST-supported COBOL vulnerability types
The COBOL vulnerability types detected by SAST are provided below and are organized by CWE ID within each of their identified severities.
COBOL high-severity vulnerability types
CWE | Vulnerability Type |
|---|---|
CWE-78 | Command Injection |
CWE-89 | SQL Injection |
CWE-121 | Buffer Overflow |