CVE-2020-4785

Summary

IBM App Connect Enterprise Certified Container 1.0.0, 1.0.1, 1.0.2, 1.0.3, and 1.0.4 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 189219.

Affected Software

VendorProductVersion RangeStatus
IBMApp Connect Enterprise Certified Container1.0.0affected
IBMApp Connect Enterprise Certified Container1.0.1affected
IBMApp Connect Enterprise Certified Container1.0.2affected
IBMApp Connect Enterprise Certified Container1.0.3affected
IBMApp Connect Enterprise Certified Container1.0.4affected

Weaknesses

  • Gain Access

ADP Enrichment

CVE Program Container

Additional References

References