2 matches found
CVE-2018-1939
Affected product: IBM Cloud Private 3.1.1. ** Vulnerability:** open redirect that enables remote attackers to conduct phishing by spoofing the displayed URL and redirecting users to a malicious site, potentially exposing sensitive information or enabling further attacks. Root cause/impact: open r...
Security Bulletin: IBM Cloud Private middleware is vulnerable to attack from redirect calls
Summary IBM Cloud Private middleware is vulnerable to attack from redirect calls Vulnerability Details CVEID: CVE-2018-1939 DESCRIPTION: IBM Cloud Private could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted...