Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IBM Operational Decision Manager HTTP open redirect
Vulnerability Description
IBM Operational Decision Manager 8.11.0.1, 8.11.1.0, 8.12.0.1, 9.0.0.1, and 9.5.0 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redirect a user to a malicious Web site that would appear to be trusted. This could allow the attacker to obtain highly sensitive information or conduct further attacks against the victim.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N
Vulnerability Type
指向未可信站点的URL重定向(开放重定向)
Vulnerability Title
IBM Operational Decision Manager 输入验证错误漏洞
Vulnerability Description
IBM Operational Decision Manager是美国国际商业机器(IBM)公司的一种决策管理解决方案,用于帮助组织更好地管理和执行业务规则和决策。 IBM Operational Decision Manager 8.11.0.1版本、8.11.1.0版本、8.12.0.1版本、9.0.0.1版本和9.5.0版本存在输入验证错误漏洞,该漏洞源于开放重定向问题,可能导致钓鱼攻击。
CVSS Information
N/A
Vulnerability Type
N/A