CVE-2024-39727

Name of the Vulnerable Software and Affected Versions IBM Engineering Lifecycle Optimization - Engineering Insights versions 7.0.2 through 7.0.3

Description The issue concerns the use of a web link with untrusted references to an external site, which could allow a remote attacker to expose sensitive information or perform unauthorized actions on the victim's web browser.

Recommendations For versions 7.0.2 and 7.0.3, consider disabling the web link feature that uses untrusted references to external sites until a patch is available. Restrict access to sensitive information and monitor for unauthorized actions on the web browser to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.