10% of dominant attack vectors map to OWASP API1 Broken Object Level Authorization (BOLA).

October 8, 2025

10% of dominant attack vectors map to OWASP API1 Broken Object Level Authorization (BOLA). — This cybersecurity statistic was published by Salt Security in October 2025. It covers topics including API, OWASP. The original data appears in State of API Security Report . For the full methodology and detailed findings, refer to the original report.

Source

View Original Report

Published on 10/8/2025

Share or Copy this stat

Frequently Asked Questions

What does this statistic say?

10% of dominant attack vectors map to OWASP API1 Broken Object Level Authorization (BOLA). This data was published by Salt Security and covers API, OWASP.

Where does this data come from?

This statistic comes from State of API Security Report , published by Salt Security on October 8, 2025. You can view the original report at https://content.salt.security/state-of-API-security-2H-2025_LP.html.

What cybersecurity topics does this cover?

This statistic relates to API, OWASP. Browse more statistics on API or from Salt Security.

CYBERSTATS

10% of dominant attack vectors map to OWASP API1 Broken Object Level Authorization (BOLA).

Source

Share or Copy this stat

Frequently Asked Questions

Want More Statistics Like This?

Related Statistics

In Q3 2025, vulnerabilities related to Agentic AI rose by 67%, indicating early signs of risk in autonomous orchestration.

In Q3 2025, authorization issues made up 28% of all API vulnerabilities.

In Q3 2025, Model Context Protocol vulnerabilities surged by 270% compared to Q2 2025.

In Q3 2025, there were 1,602 disclosed API-related vulnerabilities, representing a 20% increase from Q2 2025.

In Q3 2025, 16% of vulnerabilities added to CISA's Known Exploited Vulnerabilities catalog were API-related.

In Q3 2025, Security Misconfiguration accounted for 38% of all API flaws, rising by 33% from Q2 2025.

Browse by Topic

Stay Ahead of Cyber Threats