Is CA API Portal 3.5 affected by CVE-2018-8014