Unrated severityNVD Advisory· Published Jun 15, 2020· Updated Sep 17, 2024

CVE-2020-4406

Description

IBM Spectrum Protect Client 8.1.7.0 through 8.1.9.1 (Linux and Windows), 8.1.9.0 trough 8.1.9.1 (AIX) and IBM Spectrum Protect for Space Management 8.1.7.0 through 8.1.9.1 (Linux), 8.1.9.0 through 8.1.9.1 (AIX) web user interfaces could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 179488.

Affected products

IBM/Spectrum Protectcpe-rescue
Range: 8.1.9.0
IBM/Spectrum Protect Client (Linux and Windows)v5
Range: 8.1.7.0
IBM/Spectrum Protect for Space Management (AIX)v5
Range: 8.1.9.0
IBM/Spectrum Protect for Space Management (Linux)v5
Range: 8.1.7.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

exchange.xforce.ibmcloud.com/vulnerabilities/179488mitrevdb-entryx_refsource_XF
www.ibm.com/support/pages/node/6221448mitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000