CVE-2019-14836

2021-05-2612:15:10

Google

osv.dev

6.5 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

31.7%

JSON

A vulnerability was found that the 3scale dev portal does not employ mechanisms for protection against login CSRF. An attacker could use this flaw to access unauthorized information or conduct further attacks.

CPENameOperatorVersion
apicasteq3scale-2.2.1
apicasteq3.1.0-beta1
apicasteq3.2.0-beta1
apicasteq3.3.0-beta2
apicasteq3.0.0-rc1
apicasteq3scale-2.0.0-ER5
apicasteq3.2.0-beta2
apicasteq3scale-2.1.0-ER1
apicasteq3.0.0-beta1
apicasteq2.0.0

Name	Operator	Version
apicast	eq	3scale-2.2.1
apicast	eq	3.1.0-beta1
apicast	eq	3.2.0-beta1
apicast	eq	3.3.0-beta2
apicast	eq	3.0.0-rc1
apicast	eq	3scale-2.0.0-ER5
apicast	eq	3.2.0-beta2
apicast	eq	3scale-2.1.0-ER1
apicast	eq	3.0.0-beta1
apicast	eq	2.0.0