CVE-2024-39727 | IBM Engineering Insights 7.0.2/7.0.3 Engineering Lifecycle Optimization reverse tabnabbing

Posted by Angelo Barbosa | Dec 25, 2024 | CVE

A vulnerability was found in IBM Engineering Insights 7.0.2/7.0.3. It has been rated as problematic. This issue affects some unknown processing of the component Engineering Lifecycle Optimization. The manipulation leads to use of web link to untrusted target with window.opener access.

The identification of this vulnerability is CVE-2024-39727. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-39727 | IBM Engineering Insights 7.0.2/7.0.3 Engineering Lifecycle Optimization reverse tabnabbing

Related Posts

CVE-2023-46493 | EverShop NPM up to 1.0.0-rc.7 Request fileBrowser/browser.js readDirSync path traversal

CVE-2024-43578 | Microsoft Edge up to 129.0.2792.52 heap-based overflow

CVE-2024-43301 | Fonts Plugin up to 3.7.7 on WordPress cross-site request forgery

CVE-2023-6777 | wpgmaps WP Go Maps Plugin up to 9.0.34 on WordPress API Key information disclosure