CVE-2019-4285

IBM WebSphere Application Server - Liberty Admin Center could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could send a specially-crafted HTTP request to hijack the victim's click actions or launch other client-side browser attacks. IBM X-Force ID: 160513.

Published : 2019-07-30 14:15 Updated : 2019-10-09 23:50

3.5
CVSS Score More info
Score 3.5 / 10
3.5
Vendor Product Version URI
Ibm Websphere Application Server - cpe:/a:ibm:websphere_application_server:-::~~liberty~~~
  1. Ibm (1) Search CVE
    1. Websphere Application Server (1) Search CVE
      1. -

CWE

ID Name Description Links
CWE-20 Improper Input Validation The product does not validate or incorrectly validates input that can affect the control flow or data flow of a program. CVE

History of changes

Date Event
2019-07-31 12:25
2019-07-30 15:02

New CVE