3 matches found
CVE-2021-20560
creationtimestamp| type| source ---|---|--- 2021-07-26 16:11:19+00:00| seen| https://t.me/cibsecurity/26478...
CVE-2021-20560
Affected software: IBM Sterling Connect:Direct Browser User Interface (UI) versions 1.4.1.1 and 1.5.0.2. Root cause / vulnerability type: Missing protection for HTML frames (no X-Frame-Options header) enabling a remote attacker to perform clickjacking by convincing a user to visit a malicious sit...
Security Bulletin: HTTP Header Vulnerability Affects IBM Sterling Connect:Direct Browser User Interface (CVE-2021-20560)
Summary There are issue with HTTP header 'X-Frame-Options' not present. IBM Sterling Connect:Direct Browser has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2021-20560 DESCRIPTION: IBM Sterling Connect:Direct Browser User Interface could allow a remote attacker to hijack the...