← volver
CVE-2026-11815

Insecure Deserialization via MITM in Layer 7 Policy Manager

CVSS 5.3 MEDIUMEPSS 0.3%CWE-502
An attacker who intercepts and tampers with traffic between the client application and the API Gateway server could potentially deserialize arbitrary objects. This vulnerability could lead to broken security expectations or remote code execution.
CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:H/SI:L/SA:L
Productos afectados
Broadcom · Layer 7 API Gateway

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/37631