CVE-2020-4785

IBM App Connect Enterprise Certified Container 1.0.0, 1.0.1, 1.0.2, 1.0.3, and 1.0.4 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 189219.
References
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:ibm:app_connect_enterprise_certified_container:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:app_connect_enterprise_certified_container:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:app_connect_enterprise_certified_container:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:app_connect_enterprise_certified_container:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:app_connect_enterprise_certified_container:1.0.4:*:*:*:*:*:*:*

History

No history.

Information

Published : 2020-11-03 14:15

Updated : 2024-02-28 18:08


NVD link : CVE-2020-4785

Mitre link : CVE-2020-4785

CVE.ORG link : CVE-2020-4785


JSON object : View

Products Affected

ibm

  • app_connect_enterprise_certified_container
CWE
CWE-1021

Improper Restriction of Rendered UI Layers or Frames