CVE-2020-25634 vulnerability in Red Hat Products
Published on May 26, 2021
A flaw was found in Red Hat 3scales API docs URL, where it is accessible without credentials. This flaw allows an attacker to view sensitive information or modify service APIs. Versions before 3scale-2.10.0-ER1 are affected.
Weakness Type
What is an Authorization Vulnerability?
The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.
CVE-2020-25634 has been classified to as an Authorization vulnerability or weakness.
Products Associated with CVE-2020-25634
stack.watch emails you whenever new vulnerabilities are published in Red Hat 3scale or Red Hat 3scale Api Management. Just hit a watch button to start following.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.