← volver
CVE-2020-4827

CVE-2020-4827

CVSS 4.3 MEDIUMEPSS 0.4%
Vexday Risk Score
13Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 4.3EPSS 0.4%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
04 feb 2021Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
IBM API Connect 10.0.0.0 through 10.0.1.0 and 2018.4.1.0 through 2018.4.1.13 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 189841.
CVSS:3.0/A:N/I:L/S:U/UI:R/AC:L/PR:N/AV:N/C:N/E:U/RL:O/RC:C
Productos afectados
IBM · API Connect