Sign In

CVE-2025-27906

📊 5.3 MEDIUM0.0%🎯 0 exploits
📅 Published Oct 14, 2025
📋 Status: Analyzed

IBM Content Navigator 3.0.11, 3.0.15, 3.1.0, and 3.2.0 could expose the directory listing of the application upon using an application URL. Application files and folders are visible in the browser to a user; however, the contents of the files cannot be read obtained or modified.

🎯 Affected Products & Systems

7 product configurations affected

Filter by type:
📱
ibm / content navigator
Application
Vulnerable
Version: 3.0.11
CPE:
cpe:2.3:a:ibm:content_navigator:3.0.11:-:*:*:*:*:*:*
📱
ibm / content navigator
Application
Vulnerable
Version: 3.0.15
CPE:
cpe:2.3:a:ibm:content_navigator:3.0.15:-:*:*:*:*:*:*
📱
ibm / content navigator
Application
Vulnerable
Version: 3.1.0
CPE:
cpe:2.3:a:ibm:content_navigator:3.1.0:-:*:*:*:*:*:*
📱
ibm / content navigator
Application
Vulnerable
Version: 3.2.0
CPE:
cpe:2.3:a:ibm:content_navigator:3.2.0:-:*:*:*:*:*:*
💻
apple / macos
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
💻
linux / linux kernel
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
💻
microsoft / windows
Operating System
Safe
Version: All versions
CPE:
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
7 productsscroll for more
Metrics
5.3 MEDIUMCVSS v3.1[email protected]
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Attack Vector:
NETWORK
Complexity:
LOW
Privileges:
NONE
User Interaction:
NONE
Confidentiality:
LOW
Integrity:
NONE
Availability:
NONE
Scope:
UNCHANGED

🔍 Technical Details

Analysis Status
Analyzed
CVSS Details
5.3 (MEDIUM)v3.1
Source: [email protected]
EPSS Details
0.0% (Minimal)9.1th percentile
Last updated: Oct 30, 2025
Exploitation probability within 30 days
Published Date
Oct 14, 2025 (18 days ago)
Last Modified
Oct 21, 2025 (11 days ago)
Security Weaknesses1
References2