CVE-2020-5020

Name of the Vulnerable Software and Affected Versions IBM Spectrum Protect Plus versions 10.1.0 through 10.1.6

Description The issue allows a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this to hijack the victim's click actions and possibly launch further attacks against the victim.

Recommendations For IBM Spectrum Protect Plus versions 10.1.0 through 10.1.6, consider restricting access to potentially malicious websites to minimize the risk of exploitation. As a temporary workaround, implement additional security measures to monitor and block suspicious click actions until a patch is available.