IBM Content Navigator information disclosure_CVE-2025-27906

5.3 / 10

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Description

IBM Content Navigator 3.0.11, 3.0.15, 3.1.0, and 3.2.0 could expose the directory listing of the application upon using an application URL. Application files and folders are visible in the browser to a user; however, the contents of the files cannot be read obtained or modified.

Basic Information

ID CVE-2025-27906

Source ibm

Published Oct 14, 2025 at 14:08

Affected Product

Vendor IBM

Product Content Navigator

Version 3.0.11

Affected Versions IBM Content Navigator 3.0.11
IBM Content Navigator 3.0.15
IBM Content Navigator 3.1.0
IBM Content Navigator 3.2.0

CWE Classification

CWE-548

References

www.ibm.com /support/pages/node/7247854

{
    "lastseen": "",
    "description": "IBM Content Navigator 3.0.11, 3.0.15, 3.1.0, and 3.2.0 could expose the directory listing of the application upon using an application URL. Application files and folders are visible in the browser to a user; however, the contents of the files cannot be read obtained or modified.",
    "published": "2025-10-14T14:08:42.994Z",
    "modified": "2025-10-14T14:08:42.994Z",
    "type": "cve",
    "title": "IBM Content Navigator information disclosure",
    "source": "ibm",
    "references": "https://www.ibm.com/support/pages/node/7247854",
    "id": "CVE-2025-27906",
    "bulletinFamily": "",
    "cwe": [
        "CWE-548"
    ],
    "cvelist": null,
    "sourceData": "IBM Content Navigator 3.0.11\nIBM Content Navigator 3.0.15\nIBM Content Navigator 3.1.0\nIBM Content Navigator 3.2.0",
    "sourceHref": "",
    "cvss": {
        "score": 5.3,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Content Navigator",
    "version": "3.0.11",
    "vendor": "IBM",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}