CVE-2018-6590

CWE-79Cross-site Scripting (XSS)3 documents3 sources
Severity
6.1MEDIUM
EPSS
0.3%
top 50.06%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Broadcom CA API Developer PortalCA Technologies CA API Developer Portal
Timeline
PublishedAug 3
Latest updateMay 13

Description

CA API Developer Portal 4.x, prior to v4.2.5.3 and v4.2.7.1, has an unspecified reflected cross-site scripting vulnerability.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.7

Affected Packages2 packages

NVDbroadcom/ca_api_developer_portal4.2.04.2.5.3+2

🔴Vulnerability Details

2
GHSA
GHSA-6rgv-3m65-6x4r: CA API Developer Portal 42022-05-13
CVEList
CVE-2018-6590: CA API Developer Portal 42018-08-03
CVE-2018-6590 (MEDIUM CVSS 6.1) | CA API Developer Portal 4.x | cvebase.io