Remote Clickjacking Vulnerability in IBM Security Directory Server
CVE-2019-4548
6.1MEDIUM
Summary
IBM Security Directory Server 6.4.0 is susceptible to a clickjacking vulnerability that enables remote attackers to manipulate user actions. By enticing victims to visit a malicious website, attackers can hijack click actions, potentially leading to unauthorized actions taken on behalf of the user. This vulnerability poses a significant risk, allowing for further malicious exploits if not effectively mitigated.
Affected Version(s)
Security Directory Server 6.4.0
References
CVSS V3.1
Score:
6.1
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved