CVE-2017-1353

IBM Atlas eDiscovery Process Management 6.0.3 could allow an authenticated attacker to obtain sensitive information when an unsuspecting user clicks on unsafe third-party links. IBM X-Force ID: 126680...

CVE-2017-1353

IBM Atlas eDiscovery Process Management 6.0.3–6.0.3.5 is vulnerable to an information-disclosure issue where an authenticated attacker could obtain sensitive data when a user clicks unsafe third-party links. The root cause is that links with target="_blank" and no rel="noopener noreferrer" grant ...