SymmetricalDataSecurity: Security Bulletin: Financial Transaction Manager for High Value Payments is affected by a potential Cross-Site Scripting (Reflected) vulnerability (CVE-2020-4560)

Friday, July 31, 2020

Security Bulletin: Financial Transaction Manager for High Value Payments is affected by a potential Cross-Site Scripting (Reflected) vulnerability (CVE-2020-4560)

Jul 31, 2020 8:00 pm EDT

Share this post:

This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

Affected product(s) and affected version(s):

Affected Product(s)	Version(s)
Financial Transaction Manager for High Value Payments for Multi-Platform	3.2.4

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6255190

from IBM Product Security Incident Response Team https://ift.tt/2Ewqo2m

SymmetricalDataSecurity

Friday, July 31, 2020

Security Bulletin: Financial Transaction Manager for High Value Payments is affected by a potential Cross-Site Scripting (Reflected) vulnerability (CVE-2020-4560)

No comments:

Post a Comment

Blog Archive

Search This Blog

Total Pageviews