Top 5 Low Severity Issues
Some of the issues are being rejected by the business people even after mentioned high severity issues. It's like some scenarios we can consider as a functional as well as integration.
- App crashes: It is an awesome word for tester if app getting crashed then the issue will be high severity issue. If a bug does nothing but make an app crash, and doesn't prevent the app from restarting, it is not eligible, as it does not have a meaningful impact on users' security. It could be high severity if a user won't be able to go further due to crash.
- OS/Platform issues: Due to some OS issues or platform issues app won't be able to fulfill business requirements.
- Logging sensitive data: We aim to keep Android logs free of personally identifiable information, but since debugging privileges are required to access logs, an app logging sensitive data is not considered a severe enough vulnerability to qualify.
- Developer mode bugs: Some bugs require the device to have developer options enabled. These are not accessible on most devices without having physical access to the unlocked device for example from Android device we have enabled an auto app to kill options.
- Platform/Device Specific issues: These type of issues are not able to observe with all platforms like if tester observed some UI issues with a specific mobile device or a specific version of web browser.