CA API Developer Portal 4.3.1 and previous versions contains an access control flaw that allows privileged users to view restricted sensitive information.
broadcom ca api developer portal