Vulnerability Details CVE-2020-5020
IBM Spectrum Protect Plus 10.1.0 through 10.1.6 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 193656.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 40.6%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References
Products affected by CVE-2020-5020
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.0
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.1
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.1.142
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.2
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.2.209
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.2.219
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.2.247
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.2.271
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.2.303
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.2.350
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.3
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.3.236
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.3.286
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.4
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.4.145
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.4.179
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.4.222
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.4.254
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.4.277
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.5
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.5.2130
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.5.2153
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.5.2181
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.5.2199
-
cpe:2.3:a:ibm:spectrum_protect_plus:10.1.6
-
cpe:2.3:o:linux:linux_kernel:-