CVE-2019-4323

Medium

"HCL AppScan Enterprise advisory API documentation is susceptible to clickjacking, which could allow an attacker to embed the contents of…

HCL·CWE-1021·Published 2020-07-07

CVSS

4.3

EPSS

0.01

KEV

Exploits

cve.orgen

170 chars

"HCL AppScan Enterprise advisory API documentation is susceptible to clickjacking, which could allow an attacker to embed the contents of untrusted web pages in a frame."

NVDen

170 chars

"HCL AppScan Enterprise advisory API documentation is susceptible to clickjacking, which could allow an attacker to embed the contents of untrusted web pages in a frame."

HCL AppScan Enterprise consulta documentación de la API que es susceptible a un secuestro del click, lo que podría permitir a un atacante insertar el contenido de páginas web no confiables en un marco.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:P/A:N
3.1	Primary	NVD	4.3	2.8	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N