Findings

Majority Response Status Codes 4XX

Updated: June 19, 2025

findings log based findings api finding

Description

Over half of an API's response status codes over a given time period were in the 4XX range.

Remediation

Investigate the API to verify if it should be returning a majority of responses with 4XX status codes.

Security Frameworks

CIS API Security Guide

CIS-ASG-2.3.2: CIS 2.3.2: Establish standardized error handling procedures

Put in place a consistent procedure to handle errors.

Rationale

Establishing standardized error handling procedures ensures consistency across the API, providing a uniform approach to managing and communicating errors. This improves the clarity and usefulness of error messages for developers and users, enhancing overall user experience. It also prevents revealing sensitive information that could help attackers.

Remediation
  • Improve the clarity of error messages.
  • Establish guidelines for handling errors.
  • Enforce HTTP return status compliance.
  • Update the documentation accordingly.
Audit
  • Review the documentation by inspecting the existing error format that is in place.
  • Identify potential disclosure of internal system information in error messages.
  • Assess all existing error message quality - is it comprehensive, does it correctly communicate the error.
  • Verify HTTP standards compliance, for example 404 error should be used for non-existing resources, 401/403 error codes should be used for unauthorized access and so on.

Need help?

Contact FireTail support

Previous (Findings - Log based findings)
Majority Response Status Codes 3XX
Next (Findings - Log based findings)
Majority Response Status Codes 5XX