Application Error

Description

Unhandled exceptions pose two primary risks. Firstly, they can lead to denial of service by causing memory leaks or excessive resource consumption. Secondly, they may leak sensitive information through error messages, which attackers can exploit to target the application.

Recommendation

To mitigate risks associated with unhandled exceptions, ensure proper exception handling for all scenarios and display generic error messages to users.

References

• CWE-200
• CWE-209
• OWASP 2021-A5
• OWASP: Error Handling Cheat Sheet