CVE-2022-1414

CVSS 8.8 HIGHEPSS 0.8%CWE-1173

3scale API Management 2 does not perform adequate sanitation for user input in multiple fields. An authenticated user could use this flaw to inject scripts and possibly gain access to sensitive information or conduct further attacks.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Produtos afetados

n/a · 3scale-amp-system

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://access.redhat.com/security/cve/CVE-2022-1414 https://bugzilla.redhat.com/show_bug.cgi?id=2076794