CVE-2019-4237
published 2019-07-01CVE-2019-4237: A Cross-Frame Scripting vulnerability in IBM InfoSphere Information Server 11.3, 11.5, and 11.7 can allow an attacker to load the vulnerable application inside…
medium5.4CVSS 3.1
AVNACLPRLUIRSCCLILAN
A Cross-Frame Scripting vulnerability in IBM InfoSphere Information Server 11.3, 11.5, and 11.7 can allow an attacker to load the vulnerable application inside an HTML iframe tag on a malicious page. IBM X-Force ID: 159419.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | spamassassin | >= 0 < 3.4.2-0ubuntu0.14.04.1+esm1 | 3.4.2-0ubuntu0.14.04.1+esm1 |
| ibm | infosphere_information_governance_catalog | — | — |
| ibm | infosphere_information_governance_catalog | — | — |
| ibm | infosphere_information_governance_catalog | — | — |
| ibm | infosphere_information_server | — | — |
| ibm | infosphere_information_server | — | — |
| ibm | infosphere_information_server | — | — |
| ibm | infosphere_information_server_on_cloud | — | — |
| ibm | infosphere_information_server_on_cloud | — | — |
CVSS provenance
nvdv3.15.4MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
osv6.7MEDIUM