Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:ca_api_developer_portal:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorN/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78)
ProductCa Api Developer Portal (a50fc267-9688-57bf-9efe-317c93714e89)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2020-11666 vulnerable 2026-06-08 05:16:47.613173 Details available
CA API Developer Portal 4.3.1 and earlier contains an access control flaw that allows malicious users to elevate privileges.
Published: 2020-04-15T19:03:19.000Z
Updated: 2024-08-04T11:35:13.620Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-11665 vulnerable 2026-06-08 05:16:47.612871 Details available
CA API Developer Portal 4.3.1 and earlier handles loginRedirect page redirects in an insecure manner, which allows attackers to perform open redirect attacks.
Published: 2020-04-15T19:03:09.000Z
Updated: 2024-08-04T11:35:13.550Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-11664 vulnerable 2026-06-08 05:16:47.612550 Details available
CA API Developer Portal 4.3.1 and earlier handles homeRedirect page redirects in an insecure manner, which allows attackers to perform open redirect attacks.
Published: 2020-04-15T19:02:58.000Z
Updated: 2024-08-04T11:35:13.551Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-11663 vulnerable 2026-06-08 05:16:47.612222 Details available
CA API Developer Portal 4.3.1 and earlier handles 404 requests in an insecure manner, which allows attackers to perform open redirect attacks.
Published: 2020-04-15T19:08:37.000Z
Updated: 2024-08-04T11:35:13.501Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-11662 vulnerable 2026-06-08 05:16:47.611917 Details available
CA API Developer Portal 4.3.1 and earlier handles requests insecurely, which allows remote attackers to exploit a Cross-Origin Resource Sharing flaw and access sensitive information.
Published: 2020-04-15T19:08:30.000Z
Updated: 2024-08-04T11:35:13.638Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-11661 vulnerable 2026-06-08 05:16:47.611587 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-11660 vulnerable 2026-06-08 05:16:47.611261 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-11659 vulnerable 2026-06-08 05:16:47.610914 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-11658 vulnerable 2026-06-08 05:16:47.609901 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.