Normally, part of my job is reviewing security issues someone else reported.
This time, I found a yet undisclosed issue in a popular enterprise security product. Broken access control could lead to unauthorized disclosure of scan information.