CVE-2024-39730

CWE-4513 documents3 sources
Severity
5.4MEDIUM
EPSS
0.0%
top 87.23%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Datacap
Timeline
PublishedJun 28

Description

IBM Datacap Navigator 9.1.7, 9.1.8, and 9.1.9 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:NExploitability: 2.3 | Impact: 2.7

Affected Packages2 packages

CVEListV5ibm/datacap9.1.7, 9.1.8, 9.1.9+2
NVDibm/datacap9.1.7, 9.1.8, 9.1.9+2

🔴Vulnerability Details

2
GHSA
GHSA-vmc8-xh9x-mm66: IBM Datacap Navigator 92025-06-28
CVEList
IBM Datacap clickjacking2025-06-28
CVE-2024-39730 (MEDIUM CVSS 5.4) | IBM Datacap Navigator 9.1.7 | cvebase.io