CVE-2017-1223 in IBM Tivoli Endpoint Manager
摘要 (英语)
IBM Tivoli Endpoint Manager could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redirect a user to a malicious Web site that would appear to be trusted. This could allow the attacker to obtain highly sensitive information or conduct further attacks against the victim. IBM X-Force ID: 123902.
预定
2016-11-30
披露
2017-07-19
条目
VulDB provides additional information and datapoints for this CVE:
| 标识符 | 漏洞 | CWE | 可利用 | 对策 | CVE |
|---|---|---|---|---|---|
| 104097 | IBM Tivoli Endpoint Manager Redirect | 601 | 未定义 | 未定义 | CVE-2017-1223 |