Findings

Accepted negative data

Updated: June 19, 2025

findings action based findings api finding

Description

The API accepted data that is not in accordance with the specification.

Remediation

Ensure that the endpoint in question only processes data that is conforming to the specification.

Security Frameworks

MITRE CWE Top 25

CWE-20: Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Need help?

Contact FireTail support

Previous (Findings)
FireTail's Finding
Next (Findings - Action based findings)
Adversarial suffix vulnerability