** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
**Recent assessments:**
**rbowes-r7** at October 14, 2022 9:39pm UTC reported:
A vulnerability lets you send requests to the backend API service that appear to be coming from a trusted frontend application. As a result, you can call any REST API without authentication, which is pretty bad considering this is a security appliance.
**carlosevieira** at October 10, 2022 5:26pm UTC reported:
A vulnerability lets you send requests to the backend API service that appear to be coming from a trusted frontend application. As a result, you can call any REST API without authentication, which is pretty bad considering this is a security appliance.
Assessed Attacker Value: 5
Assessed Attacker Value: 5Assessed Attacker Value: 5Read More