IBM Content Navigator has addressed the following vulnerability.
CVEID: CVE-2019-4034
**DESCRIPTION:*IBM Content Navigator could allow an attacker to execute arbitrary code on a user’s workstation. When editing an executable file in ICN with Edit service, it will be executed on the user’s workstation.
CVSS Base Score: 6.3
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/156000> for the current score
CVSS Environmental Score: Undefined
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L)
Affected IBM Content Navigator | Affected Versions |
---|---|
IBM Content Navigator | 3.0 Continuous Delivery |
Product | VRMF | Remediation / First Fix |
---|---|---|
IBM Content Navigator | 3.0 Continuous Delivery | 3.0.4 iFix004 and above, 3.0.5 iFix001 and above. |
None.
CPE | Name | Operator | Version |
---|---|---|---|
ibm content navigator | eq | any |