1. Home
  2. CVE Database
  3. CVE-2025-27906
MEDIUM · 5.3

CVE-2025-27906

IBM Content Navigator 3.0.11, 3.0.15, 3.1.0, and 3.2.0 could expose the directory listing of the application upon using an application URL. Application files and folders are visible in the browser to ...

Vulnerability Description

IBM Content Navigator 3.0.11, 3.0.15, 3.1.0, and 3.2.0 could expose the directory listing of the application upon using an application URL. Application files and folders are visible in the browser to a user; however, the contents of the files cannot be read obtained or modified.

CVSS Score

5.3

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
LOW
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
IbmContent Navigator3.0.11
AppleMacos-
LinuxLinux Kernel-
MicrosoftWindows-

Related Weaknesses (CWE)

CWE-548

References

FAQ

What is CVE-2025-27906?

CVE-2025-27906 is a vulnerability with a CVSS score of 5.3 (MEDIUM). IBM Content Navigator 3.0.11, 3.0.15, 3.1.0, and 3.2.0 could expose the directory listing of the application upon using an application URL. Application files and folders are visible in the browser to ...

How severe is CVE-2025-27906?

CVE-2025-27906 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-27906?

Check the references section above for vendor advisories and patch information. Affected products include: Ibm Content Navigator, Apple Macos, Linux Linux Kernel, Microsoft Windows.