Matteo Civera

**Name of the Vulnerable Software and Affected Versions** CA API Developer Portal versions 4.3.1 and earlier **Description** The issue allows attackers to bypass authorization due to the insecure handling of shared secret keys. **Recommendations** For CA API Developer Portal versions 4.3.1 and earlier, update to a version that properly secures shared secret keys to prevent authorization bypass.

**Name of the Vulnerable Software and Affected Versions** CA API Developer Portal versions 4.3.1 and earlier **Description** The issue is related to an access control flaw that allows privileged users to view restricted sensitive information. **Recommendations** For CA API Developer Portal versions 4.3.1 and earlier, update to a version that contains a fix for this issue to prevent privileged users from accessing restricted sensitive information.