CVE-2019-4548

Name of the Vulnerable Software and Affected Versions IBM Security Directory Server version 6.4.0

Description The issue allows a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this to hijack the victim's click actions and possibly launch further attacks against the victim.

Recommendations For IBM Security Directory Server version 6.4.0, consider restricting access to malicious Web sites to minimize the risk of exploitation. As a temporary workaround, avoid using the software to access untrusted web sites until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.