Fortify SCA internal error
[2018-10-12 19:52:40.355 Thread-29 SEVERE 1043] An internal error has occurred. Please contact Fortify Support with reference code 1043. Bugcheck data will be saved to the logfile, if specified. Fortify Static Code Analyzer will attempt to recover from this error, though results may be incomplete.
This is the STDOUT and what's contained in the log (several hundred times). What is it, how do I fix it? I am using 18.10 against a Java project.
One of the Fortify Product Managers told me as follows:
The criticality is made by Impact and likelihood
Impact and Likelihood are deriving beside others from confidence and severity
You can find these values at the bottom of the detailed description of a Vulnerability. They are calculated during the scan by various parameter which can lead to the same vulnerability category, depending on different factors will have different criticalities.
On top of that it is possible to generate customized filtersets which can change that and are dependent on your companies implementation.
Hope that helps!