CVE-2018-6586

2018-03-2900:00:00

CWE-79

www.cve.org

0.001 Low

EPSS

Percentile

32.9%

JSON

CA API Developer Portal 3.5 up to and including 3.5 CR6 has a stored cross-site scripting vulnerability related to profile picture processing.

CNA Affected

[
  {
    "product": "CA API Developer Portal",
    "vendor": "CA Technologies",
    "versions": [
      {
        "lessThan": "3.5 CR7",
        "status": "affected",
        "version": "3.5",
        "versionType": "custom"
      }
    ]
  }
]

References

www.securitytracker.com/id/1040603

support.ca.com/us/product-content/recommended-reading/security-notices/ca20180328-01--security-notice-for-ca-api-developer-portal.html

0.001 Low

EPSS

Percentile

32.9%

JSON

Related for CVELIST:CVE-2018-6586