Security Bulletin: ICN Is Vulnerable to Improper Input Validation

Summary IBM Content Navigator could allow a malicious user to cause a denial of service due to improper input validation. Vulnerability Details CVEID: CVE-2021-29714 DESCRIPTION: IBM Content Navigator could allow a malicious user to cause a denial of service due to improper input validation. CVSS...

Security Bulletin: IBM Content Navigator is vulnerable to an email exploit

Summary IBM Content Navigator has addressed the following vulnerability. Vulnerability Details Third Party Entry: PSIRT-ADV0028011 DESCRIPTION: Created from Advisory: ADV0028011 CVSS Base score: 5.9 CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products and Versions Affected...

Security Bulletin: IBM Content Navigator is susceptible to a cross-site scripting vunlerability.

Summary IBM Content Navigator has addressed the following vulnerability Vulnerability Details CVEID: CVE-2020-4757 DESCRIPTION: IBM FileNet Content Manager and IBM Content Navigator is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in...

Security Bulletin: IBM Content Navigator is vulnerable to cross-site scripting.

Summary IBM Content Navigator has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2020-4760 DESCRIPTION: IBM Content Navigator is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended...

IBM Content Navigator Information Disclosure Vulnerability (CNVD-2020-47547)

IBM Content Navigator is a Web client from IBM USA. The product supports searching and processing documents stored in content servers from a Web browser. A security vulnerability exists in IBM Content Navigator version 3.0CD. The vulnerability can be exploited by an attacker to illegally view oth...

Security Bulletin: IBM Content Navigator is vulnerable to an Elliptic Curve Key Disclosure.

Summary IBM Content Navigator has addressed the following vulnerability. A potential vulnerability in the jose4j module could allow information disclosure. Vulnerability Details Third Party Entry: 186425 DESCRIPTION: jose.4.j library key information disclosure CVSS Base score: 8.7 CVSS Temporal...

Security Bulletin: IBM Content Navigator is vulnerable to improper input validation

Summary IBM Content Navigator has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2020-4548 DESCRIPTION: IBM Content Navigator is vulnerable to improper input validation. A malicious administrator could bypass the user interface and send requests to the IBM Content Navigat...

PT-2019-17003 · Ibm · Ibm Content Navigator

Name of the Vulnerable Software and Affected Versions: IBM Content Navigator version 3.0CD Description: The issue allows an attacker to access a configuration file in the ICN server through local file inclusion. Recommendations: For IBM Content Navigator version 3.0CD, consider restricting access...

IBM Content Navigator Local File Containment Vulnerability

IBM Content Navigator is a Web client from IBM USA. The product supports searching and processing documents stored in content servers from a Web browser. A local file inclusion vulnerability exists in IBM Content Navigator version 3.0CD. An attacker can exploit this vulnerability to access...

CVE-2019-4033

IBM Content Navigator 2.0.3 and 3.0CD is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 155999...