CVE-2020-4195

IBM API Connect V2018.4.1.0 through 2018.4.1.10 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 174859.
References
Configurations

Configuration 1

cpe:2.3:a:ibm:api_connect:*:*:*:*:*:*:*:*

Information

Published : 2020-05-12 02:15

Updated : 2020-05-12 08:28


NVD link : CVE-2020-4195

Mitre link : CVE-2020-4195

Products Affected
No products.
CWE
CWE-1021

Improper Restriction of Rendered UI Layers or Frames