Critical Vulnerability in 3Scale Developer Portal Allows Brute Force Attacks and Unauthorized Access

Critical Vulnerability in 3Scale Developer Portal Allows Brute Force Attacks and Unauthorized Access

CVE-2021-3412 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

It was found that all versions of 3Scale developer portal lacked brute force protections. An attacker could use this gap to bypass login controls, and access privileged information, or possibly conduct further attacks.

Learn more about our Web Application Penetration Testing UK.