CVE-2019-14836

Summary

A vulnerability was found that the 3scale dev portal does not employ mechanisms for protection against login CSRF. An attacker could use this flaw to access unauthorized information or conduct further attacks.

Affected Software

VendorProductVersion RangeStatus
n/aRed Hat 3scale API ManagementRed Hat 3scale API Management 2.10.0affected

Weaknesses

  • Cross-Site Request Forgery (CSRF)

ADP Enrichment

CVE Program Container

Additional References

References