GCVE - cpe:2.3:a:ibm:content_navigator:2.0.3.8:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:ibm:content_navigator:2.0.3.8:*:*:*:*:*:*:*

part: a version: 2.0.3.8 update: *

Vendor	Ibm (`177c0602-9232-5933-8f2f-9d22f079d22d`)
Product	Content Navigator (`52a9900a-8c03-5296-a733-d6e2a4289ca3`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2017-1522`	vulnerable	2026-06-03 14:37:05.541285	Details available IBM Content Navigator & CMIS 2.0.3, 3.0.0, and 3.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 129832. Published: 2017-10-05T17:00:00.000Z Updated: 2024-09-16T19:20:57.650Z Open on db.gcve.eu Reference links http://www.ibm.com/support/docview.wss?uid=swg22008162 https://exchange.xforce.ibmcloud.com/vulnerabilities/129832	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-1331`	vulnerable	2026-06-03 14:37:04.949095	Details available IBM Content Navigator 2.0.3 and 3.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 126233. Published: 2017-08-04T16:00:00.000Z Updated: 2024-09-17T02:16:50.864Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/126233 http://www.ibm.com/support/docview.wss?uid=swg22003928 http://www.securityfocus.com/bid/100120	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-1282`	vulnerable	2026-06-03 14:37:04.742303	Details available IBM Content Navigator & CMIS 2.0 and 3.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 124760. Published: 2017-05-22T20:00:00.000Z Updated: 2024-08-05T13:32:27.886Z Open on db.gcve.eu Reference links http://www.ibm.com/support/docview.wss?uid=swg22002356 http://www.securityfocus.com/bid/98563	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.