Описание
3scale API Management 2 does not perform adequate sanitation for user input in multiple fields. An authenticated user could use this flaw to inject scripts and possibly gain access to sensitive information or conduct further attacks.
Ссылки
- Vendor Advisory
- Issue TrackingVendor Advisory
- Vendor Advisory
- Issue TrackingVendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:redhat:3scale_api_management:2.0:*:*:*:*:*:*:*
EPSS
Процентиль: 66%
0.00513
Низкий
8.8 High
CVSS3
Дефекты
CWE-1173
CWE-20
Связанные уязвимости
CVSS3: 6.3
redhat
почти 4 года назад
3scale API Management 2 does not perform adequate sanitation for user input in multiple fields. An authenticated user could use this flaw to inject scripts and possibly gain access to sensitive information or conduct further attacks.
CVSS3: 8.8
github
больше 3 лет назад
3scale API Management 2 does not perform adequate sanitation for user input in multiple fields. An authenticated user could use this flaw to inject scripts and possibly gain access to sensitive information or conduct further attacks.
EPSS
Процентиль: 66%
0.00513
Низкий
8.8 High
CVSS3
Дефекты
CWE-1173
CWE-20