IsacaIsaca
CDPSE · Question #318
CDPSE Question #318: Real Exam Question with Answer & Explanation
The correct answer is A: Business logic misconfiguration. See the full explanation below for the reasoning.
Privacy Architecture
Question
Which type of flaw in an application programming interface (API) allows an attacker to manipulate legitimate standard functionality?
Options
- ABusiness logic misconfiguration
- BExcessive data exposure
- CLack of resources and rate limiting
- DBroken object level authorization
Topics
#API security#Business logic flaws#Application security#Vulnerability management
Community Discussion
No community discussion yet for this question.