Clickjacking Vulnerability in IBM Security Guardium Insights
CVE-2020-4165

5.4MEDIUM

Key Information:

Vendor: IBM
Status: Security Guardium Insights
Vendor: CVE Published:; 24 August 2020

Summary

A clickjacking vulnerability in IBM Security Guardium Insights 2.0.1 allows remote attackers to deceive users into clicking on malicious elements by redirecting them to harmful web pages. This could lead to unauthorized actions being executed on behalf of the user, potentially compromising sensitive data. The vulnerability emphasizes the need for robust security measures to prevent such attacks and protect user interactions online.

Affected Version(s)

Security Guardium Insights 2.0.1

References

https://www.ibm.com/support/pages/node/6320069

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/174401

vdb-entryx_refsource_XF

CVSS V3.1

Score:

5.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Aug 24, 2020
Vulnerability Reserved
Dec 30, 2019