CVE-2019-4571: XSS
First published: Wed Sep 25 2019(Updated: )
IBM Content Navigator is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Content Navigator | =3.0.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is IBM Content Navigator vulnerability (CVE-2019-4571)?
IBM Content Navigator (CVE-2019-4571) is a vulnerability that allows users to embed arbitrary JavaScript code in the Web UI, potentially leading to credentials disclosure.
How severe is the IBM Content Navigator vulnerability (CVE-2019-4571)?
The severity of IBM Content Navigator vulnerability (CVE-2019-4571) is medium with a severity value of 5.4.
How does the IBM Content Navigator vulnerability (CVE-2019-4571) affect the system?
The IBM Content Navigator vulnerability (CVE-2019-4571) allows users to alter the intended functionality of the Web UI, potentially leading to credentials disclosure within a trusted session.
What is the affected software version for the IBM Content Navigator vulnerability (CVE-2019-4571)?
The affected software version for the IBM Content Navigator vulnerability (CVE-2019-4571) is 3.0.0.
Where can I find more information about the IBM Content Navigator vulnerability (CVE-2019-4571)?
You can find more information about the IBM Content Navigator vulnerability (CVE-2019-4571) on the IBM X-Force ID: 166721 page.
- collector/ibm-support
- collector/nvd-index
- vendor/ibm
- canonical/ibm content navigator
- version/ibm content navigator/3.0.0