Описание
IBM InfoSphere Enterprise Records 4.5.1 before 4.5.1.7-IER-IF001 and Enterprise Records 5.1.1 before 5.1.1.1-IER-IF003 do not properly restrict use of FRAME elements, which makes it easier for remote attackers to conduct clickjacking attacks via a crafted web site.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:enterprise_records:5.1.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:infosphere_enterprise_records:4.5.1:*:*:*:*:*:*:*
EPSS
Процентиль: 42%
0.00195
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-20
Связанные уязвимости
github
больше 3 лет назад
IBM InfoSphere Enterprise Records 4.5.1 before 4.5.1.7-IER-IF001 and Enterprise Records 5.1.1 before 5.1.1.1-IER-IF003 do not properly restrict use of FRAME elements, which makes it easier for remote attackers to conduct clickjacking attacks via a crafted web site.
EPSS
Процентиль: 42%
0.00195
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-20