Описание
IBM Doors Web Access 9.5 and 9.6 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 129826.
Ссылки
- PatchVendor Advisory
- Third Party AdvisoryVDB Entry
- VDB EntryVendor Advisory
- PatchVendor Advisory
- Third Party AdvisoryVDB Entry
- VDB EntryVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 9.5.0.0 (включая) до 9.5.0.7 (включая)Версия от 9.5.1.0 (включая) до 9.5.1.8 (включая)Версия от 9.5.2.0 (включая) до 9.5.2.7 (включая)Версия от 9.6.0.0 (включая) до 9.6.0.6 (включая)Версия от 9.6.1.0 (включая) до 9.6.1.9 (включая)
Одно из
cpe:2.3:a:ibm:engineering_requirements_management_doors:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:engineering_requirements_management_doors:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:engineering_requirements_management_doors:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:engineering_requirements_management_doors:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:engineering_requirements_management_doors:*:*:*:*:*:*:*:*
EPSS
Процентиль: 48%
0.00251
Низкий
5.4 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-20
Связанные уязвимости
CVSS3: 5.4
github
больше 3 лет назад
IBM Doors Web Access 9.5 and 9.6 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 129826.
EPSS
Процентиль: 48%
0.00251
Низкий
5.4 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-20