EUVD-2021-7978

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

IBM Sterling Connect:Direct Browser vulnerabilities allow attackers to hijack victim's click actions.

Reporter	Title	Published	Views	Family All 8
IBM Security Bulletins	Security Bulletin: HTTP Header Vulnerability Affects IBM Sterling Connect:Direct Browser User Interface (CVE-2021-20560)	23 Jul 202107:55	–	ibm
Circl	CVE-2021-20560	26 Jul 202116:11	–	circl
CNNVD	IBM Sterling Connect 安全漏洞	26 Jul 202100:00	–	cnnvd
CNVD	IBM Sterling Connect Clickjacking Vulnerability	28 Jul 202100:00	–	cnvd
CVE	CVE-2021-20560	26 Jul 202112:10	–	cve
Cvelist	CVE-2021-20560	26 Jul 202112:10	–	cvelist
NVD	CVE-2021-20560	26 Jul 202112:15	–	nvd
Prion	Design/Logic Flaw	26 Jul 202112:15	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "f20b1436-4c50-377f-b7ed-bc77f2511534",
        "vendor": {
          "name": "IBM"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "01717259-aa6a-3832-9cfe-f16d2f7a7d8b",
        "product": {
          "name": "Sterling Connect:Direct Browser User Interface"
        },
        "product_version": "1.4.1.1"
      },
      {
        "id": "598cf5cc-68bc-389a-87cc-39d3ca635a1c",
        "product": {
          "name": "Sterling Connect:Direct Browser User Interface"
        },
        "product_version": "1.5.0.2"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/6474829
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/199229

03 Oct 2025 20:07Current

5.7Medium risk

Vulners AI Score5.7

CVSS 35.4

CVSS 24.9

CVSS 3.15.4

EPSS0.00076