IBM Engineering Lifecycle Optimization - Engineering Insights 7.0.2 and 7.0.3 uses a web link with untrusted references to an external site. A remote attacker could exploit this vulnerability to expose sensitive information or perform unauthorized actions on the victims’ web browser.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NIBM Engineering Lifecycle Optimization Engineering Insights
APPIbm7.0.27.0.3
Powiązane podatności
IBM Engineering Lifecycle Optimization - Engineering Insights 7.0.2 and 7.0.3 is vulnerable to an XML External...
IBM Jazz Foundation and IBM Engineering products could allow a remote attacker to bypass security restrictions...
IBM Engineering Lifecycle Optimization - Engineering Insights 7.0.2 and 7.0.3 could allow a remote attacker to...
IBM Jazz Foundation products are vulnerable to server side request forgery (SSRF). This may allow an authentic...
IBM Jazz Foundation products are vulnerable to cross-site scripting. This vulnerability allows users to embed ...