CVE-2017-1146

Summary

IBM Content Navigator 2.0.3 and 3.0.0 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM Reference #: 1999736.

Affected Software

VendorProductVersion RangeStatus
IBM CorporationContent Navigator2.0affected
IBM CorporationContent Navigator2.0.1affected
IBM CorporationContent Navigator2.0.2affected
IBM CorporationContent Navigator2.0.3affected
IBM CorporationContent Navigator3.0.0affected

Weaknesses

  • Cross-Site Scripting

ADP Enrichment

CVE Program Container

Additional References

References