CVE-2018-1803
First published: Thu Dec 13 2018(Updated: )
IBM Security Access Manager Appliance 9.0.1.0, 9.0.2.0, 9.0.3.0, 9.0.4.0, and 9.0.5.0 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 149702.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Security Access Manager | >=9.0.1.0<=9.0.5.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2018-1803?
The severity of CVE-2018-1803 is medium with a severity value of 6.1.
How does CVE-2018-1803 affect IBM Security Access Manager Appliance?
CVE-2018-1803 affects IBM Security Access Manager Appliance versions 9.0.1.0, 9.0.2.0, 9.0.3.0, 9.0.4.0, and 9.0.5.0.
What is the vulnerability description of CVE-2018-1803?
CVE-2018-1803 allows a remote attacker to hijack the clicking action of the victim by persuading them to visit a malicious website.
How can an attacker exploit CVE-2018-1803?
An attacker can exploit CVE-2018-1803 by enticing a victim to visit a malicious website and hijack their click actions.
Are there any references for CVE-2018-1803?
References for CVE-2018-1803 can be found at: [IBM Support](http://www.ibm.com/support/docview.wss?uid=ibm10787785) and [IBM X-Force](https://exchange.xforce.ibmcloud.com/vulnerabilities/149702).
- collector/nvd-index
- vendor/ibm
- canonical/ibm security access manager
- version/ibm security access manager/9.0.1.0
- version/ibm security access manager/9.0.5.0