2 matches found
Security Bulletin: Trusteer Pinpoint affected by security vulnerability CVE-2020-4708
Summary Trusteer Pinpoint has addressed the issue. Vulnerability Details CVEID:CVE-2020-4708 DESCRIPTION: IBM Trusteer Pinpoint could disclose some information due to using a wildcard in the Access-Control-Allow-Origin header. CVSS Base score: 3.7 CVSS Temporal Score: See:...
CVE-2020-4708
CVE-2020-4708 affects IBM Trusteer Pinpoint Detect/Trusteer Pinpoint (11.6.5 and earlier). The root cause is a wildcard in the Access-Control-Allow-Origin header, enabling information disclosure. IBM lists a fix: Trusteer Pinpoint version 11.6.5.2 adds a server-side setting to restrict CORS respo...