What is a confused deputy problem in security?

Correct! Well done.

Incorrect.

The correct answer is B) A vulnerability where a component with sufficient privilege is tricked by another into misusing its authority — e.g., CSRF uses the browser (deputy) to make requests with victim's credentials

Correct Answer

A vulnerability where a component with sufficient privilege is tricked by another into misusing its authority — e.g., CSRF uses the browser (deputy) to make requests with victim's credentials

Explanation

Confused deputy: the deputy has authority but uses it on behalf of an attacker without knowing. CSRF tricks the browser (which has the user's cookies) to send requests. SSRF makes the server (with internal access) fetch attacker-chosen URLs.

Previous All Questions Next

Progress

94/100

🔐

Browse All Cybersecurity & Cryptography Questions

100 questions · beginner to advanced