Design/Logic Flaw

2017-09-2516:29:00

PRIOn knowledge base

www.prio-n.com

6.1 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

40.9%

JSON

IBM API Connect 5.0.0.0 through 5.0.7.2 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim’s click actions and possibly launch further attacks against the victim. IBM X-Force ID: 131291.

CPENameOperatorVersion
api_connecteq5.0.0.1
api_connecteq5.0.4.0
api_connecteq5.0.7.0
api_connecteq5.0.3.0
api_connecteq5.0.6.0
api_connecteq5.0.1.0
api_connecteq5.0.6.2
api_connecteq5.0.2.0
api_connecteq5.0.5.0
api_connecteq5.0.7.1

Name	Operator	Version
api_connect	eq	5.0.0.1
api_connect	eq	5.0.4.0
api_connect	eq	5.0.7.0
api_connect	eq	5.0.3.0
api_connect	eq	5.0.6.0
api_connect	eq	5.0.1.0
api_connect	eq	5.0.6.2
api_connect	eq	5.0.2.0
api_connect	eq	5.0.5.0
api_connect	eq	5.0.7.1