Wednesday, August 28, 2019

IBM Security Bulletin: IBM Cloud Automation Manager is affected by a insecure Content-Security-Policy header vulnerability CVE-2019-4133

IBM Cloud Automation Manager could allow a malicious user on the client side (with access to client computer) to run a custom script.

CVE(s): CVE-2019-4133

Affected product(s) and affected version(s):
IBM Cloud Automation Manager 3.1.2

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www-01.ibm.com/support/docview.wss?uid=ibm10967359
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/158278

The post IBM Security Bulletin: IBM Cloud Automation Manager is affected by a insecure Content-Security-Policy header vulnerability CVE-2019-4133 appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team https://ift.tt/2ZnNxxB
Posted by at

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.

Subscribe to: Post Comments (Atom)