📦 3scale

This vulnerability in 3scale's APIdocs allows attackers to bypass access controls by using invalid tokens that trigger fallback to session authentication. This could permit unauthorized access to API ...

A use-after-free vulnerability in the Linux kernel's Bluetooth subsystem allows local attackers to crash the system or potentially escalate privileges through a race condition when connecting and disc...

CVE-2021-3412 is a brute force vulnerability in all versions of 3Scale developer portal that lacks login attempt protections. Attackers can exploit this to bypass authentication, potentially accessing...

CVE-2019-14836 is a Cross-Site Request Forgery (CSRF) vulnerability in the 3scale developer portal login mechanism. This allows attackers to trick authenticated users into performing unintended action...