CVE-2021-29827

IBM InfoSphere Information Server 11.7 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim.

Published: Dec 19, 2024
Updated: May 4, 2025
CVE: CVE-2021-29827
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.2
AV:A/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CWEs:

CWE-1021

Affected Software
References

Software	From	Fixed in
ibm / infosphere_information_server	11.7	11.7.x

https://www.ibm.com/support/pages/security-bulletin-ibm-infosphere-information-server-vulnerable-cross-frame-scripting-exploit-cve-2021-29827

Vulnerability Database

289,697

CVE-2021-29827