IBM Content Navigator 3.0.3

CPE Details

IBM Content Navigator 3.0.3
ibm
content_navigator
3.0.3
2019-06-25
13h20 +00:00
2019-06-25
13h20 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:ibm:content_navigator:3.0.3:*:*:*:*:*:*:*

Informations

Vendor

ibm

Product

content_navigator

Version

3.0.3

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2022-43581 2022-12-07 17h07 +00:00 IBM Content Navigator 3.0.0, 3.0.1, 3.0.2, 3.0.3, 3.0.4, 3.0.5, 3.0.6, 3.0.7, 3.0.8, 3.0.9, 3.0.10, 3.0.11, and 3.0.12 is vulnerable to missing authorization and could allow an authenticated user to load external plugins and execute code. IBM X-Force ID: 238805.
8.8
High
CVE-2018-1496 2018-05-31 21h00 +00:00 IBM Content Navigator 2.0.3, 3.0.0, 3.0.1, 3.0.2, and 3.0.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 141219.
5.4
Medium
CVE-2018-1366 2018-02-07 17h00 +00:00 IBM Content Navigator 2.0 and 3.0 is vulnerable to Comma Separated Value (CSV) Injection. An attacker could exploit this vulnerability to exploit other vulnerabilities in spreadsheet software. IBM X-Force ID: 137452.
7.8
High
CVE-2018-1364 2018-01-29 16h00 +00:00 IBM Content Navigator 2.0 and 3.0 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 137449.
8.2
High