6.4
CVSSv2

CVE-2019-4035

Published: 22/03/2019 Updated: 09/10/2019
CVSS v2 Base Score: 6.4 | Impact Score: 4.9 | Exploitability Score: 10
CVSS v3 Base Score: 6.5 | Impact Score: 2.5 | Exploitability Score: 3.9
VMScore: 570
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N

Vulnerability Summary

IBM Content Navigator 3.0CD could allow malicious users to direct web traffic to a malicious site. If attackers make a fake IBM Content Navigator site, they can send a link to ICN users to send request to their Edit client directly. Then Edit client will download documents from the fake ICN website. IBM X-Force ID: 156001.

Vulnerability Trend

Affected Products

Vendor Product Versions
IbmContent Navigator3.0.0

Vendor Advisories

IBM Content Navigator has addressed the following vulnerability ...