Phishing Vulnerability in IBM Jazz Team Server Products
CVE-2020-4964

4.3MEDIUM

Summary

IBM Jazz Team Server products are susceptible to a vulnerability that enables an authenticated user to send customized messages through the application interface. This manipulation could potentially be leveraged by attackers to phish unsuspecting users, posing a significant risk to the integrity and security of user interactions. It is crucial for organizations using these products to remain vigilant and implement necessary security measures to protect against such exploitation.

Affected Version(s)

Engineering Lifecycle Optimization 7.0

Engineering Lifecycle Optimization 7.0.1

Engineering Lifecycle Optimization 7.0.2

References

CVSS V3.1

Score:
4.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.