5 matches found
Security Bulletin: An information disclosure security vulnerability has been identified with the embedded Content Navigator component shipped with IBM Business Automation Workflow (CVE-2019-4679)
Summary Some application server information the operating system name and version, for example is included in the response when users log into IBM Content Navigator. Vulnerability Details CVEID:CVE-2019-4679 DESCRIPTION: IBM Content Navigator 3.0CD could allow an authenticated user to gain...
Security Bulletin: IBM Content Navigator logon response security vulnerability in FileNet Content Manager
Summary Security vulnerability in IBM Content Navigator logon response in FileNet Content Manager Vulnerability Details CVEID: CVE-2019-4679 DESCRIPTION: IBM Content Navigator 3.0CD could allow an authenticated user to gain information about the hosting operating system and version that could be...
CVE-2019-4679
IBM Content Navigator 3.0CD could allow an authenticated user to gain information about the hosting operating system and version that could be used in further attacks against the system. IBM X-Force ID: 171515...
CVE-2019-4679
IBM Content Navigator 3.0CD exposes hosting operating system and version information in the logon response for authenticated users, enabling information disclosure that could support targeted attacks. Mitigation is to apply the IBM Content Navigator remediation: upgrade to the 3.0 Continuous Deli...
Security Bulletin: IBM Content Navigator discloses operating system information in logon response.
Summary IBM Content Navigator includes information about the host operating system in the response after the user successfully authenticates. Vulnerability Details CVEID: CVE-2019-4679 DESCRIPTION: IBM Content Navigator could allow an authenticated user to gain information about the hosting...