Insecure Direct Object Reference (IDOR)
CWE-639 • CVSS Score: 8.2
Description
The API endpoints do not properly validate user access to resources, allowing unauthorized access.
Impact
This vulnerability could potentially allow attackers to access sensitive data or perform unauthorized actions.
Vulnerability Info
Severity
High
Status
In Progress
CVSS Score
8.2
CWECWE-639
ReportAPI Gateway Security Scan
Discovered2024-03-10
AI Analysis
This appears to be a common high severity issue. Based on our analysis, this vulnerability has a high likelihood of exploitation.
We recommend prioritizing this issue within 7 days. Similar vulnerabilities have been found in 9 other locations.