CVE-2020-4653
CVE-2020-4653
IBM Planning Analytics 2.0 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redirect a user to a malicious Web site that would appear to be trusted. This could allow the attacker to obtain highly sensitive information or conduct further attacks against the victim.
CVSS:3.0/UI:R/PR:L/C:N/A:N/I:H/S:C/AC:L/AV:N/E:U/RC:C/RL:O
Produtos afetados
IBM · Planning AnalyticsQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →