IBM Content Navigator 3.0.3

CPE Details

IBM Content Navigator 3.0.3
ibm
content_navigator
3.0.3
2019-06-25
13h20 +00:00
2019-06-25
13h20 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:ibm:content_navigator:3.0.3:*:*:*:*:*:*:*

Informations

Vendor

ibm

Product

content_navigator

Version

3.0.3

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2022-43581 2022-12-07 17h07 +00:00 IBM Content Navigator 3.0.0, 3.0.1, 3.0.2, 3.0.3, 3.0.4, 3.0.5, 3.0.6, 3.0.7, 3.0.8, 3.0.9, 3.0.10, 3.0.11, and 3.0.12 is vulnerable to missing authorization and could allow an authenticated user to load external plugins and execute code. IBM X-Force ID: 238805.
8.8
Haute
CVE-2018-1496 2018-05-31 21h00 +00:00 IBM Content Navigator 2.0.3, 3.0.0, 3.0.1, 3.0.2, and 3.0.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 141219.
5.4
Moyen
CVE-2018-1366 2018-02-07 17h00 +00:00 IBM Content Navigator 2.0 and 3.0 is vulnerable to Comma Separated Value (CSV) Injection. An attacker could exploit this vulnerability to exploit other vulnerabilities in spreadsheet software. IBM X-Force ID: 137452.
7.8
Haute
CVE-2018-1364 2018-01-29 16h00 +00:00 IBM Content Navigator 2.0 and 3.0 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 137449.
8.2
Haute