Main Vulnerability Database Vulnerabilities #VU76627

Improper Restriction of Rendered UI Layers or Frames in IBM Security Verify Information Queue - CVE-2019-4217

Published: May 30, 2023

Vulnerability identifier: #VU76627

CSH Severity: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2019-4217

CWE-ID: CWE-1021

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
IBM Security Verify Information Queue

Software vendor:
IBM Corporation

Description

The vulnerability allows a remote attacker to hijack the clicking action of the victim.

The vulnerability exists due to application does not properly control consumption of internal resources. A remote attacker can trick the victim into visiting malicious Web site to exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks.

Remediation

Install updates from vendor's website.

Improper Restriction of Rendered UI Layers or Frames in IBM Security Verify Information Queue - CVE-2019-4217

Description

Remediation

External links

Please verify you're human