A flaw was found in the Red Hat 3scale API Management Platform, where member permissions for an API's admin portal were not properly enforced. This flaw allows an authenticated user to bypass normal account restrictions and access API services where they do not have permission.
References
Link | Resource |
---|---|
https://bugzilla.redhat.com/show_bug.cgi?id=1875553 | Issue Tracking Vendor Advisory |
https://bugzilla.redhat.com/show_bug.cgi?id=1875553 | Issue Tracking Vendor Advisory |
Configurations
History
21 Nov 2024, 05:03
Type | Values Removed | Values Added |
---|---|---|
References | () https://bugzilla.redhat.com/show_bug.cgi?id=1875553 - Issue Tracking, Vendor Advisory |
Information
Published : 2021-06-02 13:15
Updated : 2024-11-21 05:03
NVD link : CVE-2020-14388
Mitre link : CVE-2020-14388
CVE.ORG link : CVE-2020-14388
JSON object : View
Products Affected
redhat
- 3scale_api_management
CWE