CVE-2019-4034
First published: Mon Mar 11 2019(Updated: )
IBM Content Navigator 3.0CD is could allow an attacker to execute arbitrary code on a user's workstation. When editing an executable file in ICN with Edit service, it will be executed on the user's workstation. IBM X-Force ID: 156000.
Credit: psirt@us.ibm.com psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Content Navigator | =3.0.0 | |
| =3.0.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2019-4034?
CVE-2019-4034 is a vulnerability in IBM Content Navigator 3.0CD that could allow an attacker to execute arbitrary code on a user's workstation.
How does the vulnerability in IBM Content Navigator 3.0CD work?
When editing an executable file in ICN with Edit service, it will be executed on the user's workstation, allowing an attacker to execute arbitrary code.
What is the severity of CVE-2019-4034?
The severity of CVE-2019-4034 is high with a CVSS score of 8.8.
What software version is affected by CVE-2019-4034?
IBM Content Navigator 3.0.0 is affected by CVE-2019-4034.
How can I fix CVE-2019-4034?
Apply the necessary security updates or patches provided by IBM to fix CVE-2019-4034.
- collector/nvd-index
- agent/type
- agent/references
- agent/severity
- agent/description
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/author
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- agent/event
- vendor/ibm
- canonical/ibm content navigator
- version/ibm content navigator/3.0.0