CVE-2023-4910

Summary

A flaw was found In 3Scale Admin Portal. If a user logs out from the personal tokens page and then presses the back button in the browser, the tokens page is rendered from the browser cache.

Affected Software

VendorProductVersion RangeStatus

Weaknesses

  • CWE-668: Exposure of Resource to Wrong Sphere

Workarounds

No mitigation is yet available for this flaw.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References