3scale API Management 2 does not perform adequate sanitation for user input in multiple fields. An authenticated user could use this flaw to inject scripts and possibly gain access to sensitive information or conduct further attacks.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HRed Hat 3scale Api Management
APPRedhat2.0
Related vulnerabilities
A flaw was found in Gateway. Sending a non-base64 'basic' auth with special characters can cause APICast to in...
A random memory access flaw was found in the Linux kernel's GPU i915 kernel driver functionality in the way a ...
A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when processi...
.A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker can abuse a f...
It was found that all versions of 3Scale developer portal lacked brute force protections. An attacker could us...