CVE-2020-4309

CWE-200Information Exposure3 documents3 sources
Severity
5.3MEDIUM
EPSS
0.2%
top 56.79%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Content Navigator
Timeline
PublishedMar 24
Latest updateMay 24

Description

IBM Content Navigator 3.0CD could disclose sensitive information to an unauthenticated user which could be used to aid in further attacks against the system. IBM X-Force ID: 177080.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages2 packages

CVEListV5ibm/content_navigator3.0CD

Patches

Patch: www.ibm.comPatch: www.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-m69q-57q3-55f9: IBM Content Navigator 32022-05-24
CVEList
CVE-2020-4309: IBM Content Navigator 32020-03-24
CVE-2020-4309 (MEDIUM CVSS 5.3) | IBM Content Navigator 3.0CD could d | cvebase.io