8.8
CVE-2020-11666
- EPSS 0.6%
- Published 15.04.2020 20:15:15
- Last modified 21.11.2024 04:58:21
- Source vuln@ca.com
- Teams watchlist Login
- Open Login
CA API Developer Portal 4.3.1 and earlier contains an access control flaw that allows malicious users to elevate privileges.
Data is provided by the National Vulnerability Database (NVD)
Broadcom ≫ Ca Api Developer Portal Version >= 4.0 <= 4.3.1
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.6% | 0.685 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 8.8 | 2.8 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 6.5 | 8 | 6.4 |
AV:N/AC:L/Au:S/C:P/I:P/A:P
|