Description
IBM Financial Transaction Manager 3.0 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 172877.
CVSS breakdown
CVSS 3.0
Integrity
Low
Privileges Required
None
Attack Vector
Network
Attack Complexity
Low
Availability
None
User Interaction
Required
Scope
Changed
Confidentiality
Low
RC
Changed
E
Unchanged
RL
O
Affected products
- ibm / Financial Transaction Manager3.0 – 3.0