From the course: The OWASP API 2023 Top 10: An Overview
Join today to access over 24,100 courses taught by industry experts.
API9:2023 Improper Inventory Management
From the course: The OWASP API 2023 Top 10: An Overview
API9:2023 Improper Inventory Management
- [Instructor] The ninth O OSP API Vulnerability is improper inventory management. O OSP explains its vulnerability as APIs tend to expose more endpoints than traditional web applications, making proper and updated documentation highly important. A proper inventory of hosts and deployed API versions are also important to mitigate issues such as deprecated API versions, and exposed debug endpoints. Improper inventory management occurs when applications fail to effectively keep track of its resources, assets, or data objects exposed through different versions of an API. This mainly happens due to the lack of proper access controls, authentication, or authorization mechanisms in older API endpoints. Unauthorized access and data exposure pose security risks, especially when dealing with non-production builds or deprecated API versions. When you were younger, did you ever have a toy or a video game that you loved, but when a…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
-
(Locked)
API1:2023 Broken Object-Level Authorization3m 39s
-
(Locked)
API2:2023 Broken Authentication2m 54s
-
(Locked)
API3:2023 Broken Object-Property-Level Authorization3m 46s
-
(Locked)
API4:2023 Unrestricted Resource Consumption3m 9s
-
(Locked)
API5:2023 Broken Function-Level Authorization3m 8s
-
(Locked)
API6:2023 Unrestricted Access to Sensitive Business Flows2m 54s
-
(Locked)
API7:2023 Server-Side Request Forgery2m 11s
-
(Locked)
API8:2023 Security Misconfigurations3m 40s
-
(Locked)
API9:2023 Improper Inventory Management3m 5s
-
(Locked)
API10:2023 Unsafe Consumption of APIs3m 33s
-
(Locked)
-