← voltar
CVE-2020-4775

CVE-2020-4775

CVSS 5.4 MEDIUMEPSS 0.6%
Vexday Risk Score
13Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 5.4EPSS 0.6%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
12 out 2020Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
A cross-site scripting (XSS) vulnerability may impact IBM Curam Social Program Management 7.0.9 and 7.0.10. This vulnerability allows attackers to inject malicious scripts into web applications for the purpose of running unwanted actions on the end user's device, restricted to a single location. IBM X-Force ID: 189153.
CVSS:3.0/UI:R/S:C/C:L/I:L/AC:L/AV:N/A:N/PR:L/E:H/RL:O/RC:C
Produtos afetados
IBM · Curam SPM