CVE-2020-35735 : What You Need to Know
Learn about CVE-2020-35735, a vulnerability in Vidyo 02-09-/D allowing clickjacking via the portal/ URI. Find out the impact, affected systems, and mitigation steps.
Vidyo 02-09-/D allows clickjacking via the portal/ URI.
Understanding CVE-2020-35735
Vulnerability in Vidyo 02-09-/D that enables clickjacking through the portal/ URI.
What is CVE-2020-35735?
The CVE-2020-35735 vulnerability in Vidyo 02-09-/D permits clickjacking via the portal/ URI, potentially leading to security breaches.
The Impact of CVE-2020-35735
Clickjacking vulnerability could allow attackers to trick users into interacting with malicious content unknowingly, leading to unauthorized actions or data theft.
Technical Details of CVE-2020-35735
Vulnerability details and affected systems.
Vulnerability Description
Vidyo 02-09-/D is susceptible to clickjacking attacks through the portal/ URI, posing a security risk.
Affected Systems and Versions
- Product: Vidyo 02-09-/D
- Vendor: N/A
- Version: N/A
Exploitation Mechanism
The vulnerability can be exploited by luring users to click on a malicious link that overlays the portal/ URI, enabling attackers to control user actions.
Mitigation and Prevention
Steps to mitigate and prevent exploitation of CVE-2020-35735.
Immediate Steps to Take
- Implement security headers to prevent clickjacking attacks.
- Regularly update Vidyo software to patch known vulnerabilities.
Long-Term Security Practices
- Educate users on identifying and avoiding suspicious links.
- Conduct regular security assessments and penetration testing to identify and address vulnerabilities.
Patching and Updates
Apply patches and updates provided by Vidyo to address the CVE-2020-35735 vulnerability.