CVE-2021-3412

Name of the Vulnerable Software and Affected Versions: 3Scale developer portal versions (all versions)

Description: The issue is related to the lack of brute force protections in the 3Scale developer portal. This gap allows an attacker to bypass login controls, access privileged information, or possibly conduct further attacks.

Recommendations: For all versions, consider implementing brute force protection mechanisms to prevent unauthorized access. As a temporary workaround, restrict access to sensitive information and privileged areas of the portal until a proper fix is applied. At the moment, there is no information about a newer version that contains a fix for this vulnerability.