CA API Developer Portal 4.3.1 and previous versions contains an access control flaw that allows malicious users to elevate privileges.
broadcom ca api developer portal