CVE-2020-4547

CVSS 5.4 MEDIUMEPSS 0.8%

IBM Jazz Foundation products could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 183315.

CVSS:3.0/S:C/A:N/UI:R/AC:L/I:L/C:L/PR:L/AV:N/E:U/RC:C/RL:O

Produtos afetados

IBM · Engineering Lifecycle Optimization IBM · Engineering Test Management IBM · Engineering Workflow Management IBM · Rational Collaborative Lifecycle Management IBM · Rational DOORS Next Generation IBM · Rational Engineering Lifecycle Manager IBM · Rational Quality Manager IBM · Rational Rhapsody Design Manager IBM · Rational Rhapsody Model Manager IBM · Rational Team Concert

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://exchange.xforce.ibmcloud.com/vulnerabilities/183315 https://www.ibm.com/support/pages/node/6408694