Access Control Flaw in CA API Developer Portal 4.3.1 and Earlier Allows Privileged Users to View Restricted Sensitive Information

Access Control Flaw in CA API Developer Portal 4.3.1 and Earlier Allows Privileged Users to View Restricted Sensitive Information

CVE-2020-11660 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CA API Developer Portal 4.3.1 and earlier contains an access control flaw that allows privileged users to view restricted sensitive information.

Learn more about our Api Penetration Testing.