CVE-2022-22503 Robotic Process Automation 21.0.0 could be hijacked by a remote attacker.

CVE-2019-10565 A vulnerability in the XCVF system could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 227126.

CVE-2019-10566 A vulnerability in the XCVF system could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 227127.

CVE-2019-10567 A vulnerability in the XCVF system could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 227128.

CVE-2019-10568 A vulnerability in the XCVF system could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 227

IBM WebSphere Application Server

IBM WebSphere Application Server is the platform for the IBM Software Group. This software group includes IBM Rational and IBM Commerce Solutions, as well as other products like Watson AI and Cognos.

IBM WebSphere Application Server is a Java-based application server that provides an environment for hosting, deploying, and running Java EE applications and Web services in a secure manner. It allows developers to create web applications that run on different platforms including Linux, Microsoft Windows, and OS X. The main features of this product include:
- Security - IBM WebSphere Application Server uses security measures such as authentication, authorization, auditing, encryption, and virtual private networking (VPN) to provide encryption of data at rest and in transit between clients and servers.
- Scalability - IBM WebSphere Application Server is designed to be highly scalable with support for development on multiple cores or hardware threads. It also supports offloading tasks from the application server to other systems or even non-server systems like cloud computing environments.

Software Requirements

CVE-2019-10569 A vulnerability in the XCVF system could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 227129

Timeline

Published on: 10/06/2022 18:15:00 UTC
Last modified on: 11/08/2022 19:44:00 UTC

References

• https://exchange.xforce.ibmcloud.com/vulnerabilities/227125
• https://www.ibm.com/support/pages/node/6825995
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-22503