CVE-2024-55904
- EPSS 0.62%
- Veröffentlicht 14.02.2025 04:15:08
- Zuletzt bearbeitet 18.08.2025 18:14:40
IBM DevOps Deploy 8.0 through 8.0.1.4, 8.1 through 8.1.0.0 / IBM UrbanCode Deploy 7.0 through 7.0.5.25, 7.1 through 7.1.2.21, 7.2 through 7.2.3.14, and 7.3 through 7.3.2.9 could allow a remote privileged authenticated attacker to execute arbitrary co...
CVE-2024-54176
- EPSS 0.27%
- Veröffentlicht 08.02.2025 17:15:21
- Zuletzt bearbeitet 15.08.2025 12:33:18
IBM DevOps Deploy 8.0 through 8.0.1.4, 8.1 through 8.1.0.0 and IBM UrbanCode Deploy (UCD) 7.0 through 7.0.5.25, 7.1 through 7.1.2.21, 7.2 through 7.2.3.14 and 7.3 through 7.3.2 could allow an authenticated user to obtain sensitive information about o...
CVE-2024-51472
- EPSS 0.25%
- Veröffentlicht 06.01.2025 17:15:38
- Zuletzt bearbeitet 20.06.2025 18:09:43
IBM UrbanCode Deploy (UCD) 7.2 through 7.2.3.13, 7.3 through 7.3.2.8, and IBM DevOps Deploy 8.0 through 8.0.1.3 are vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to se...
CVE-2024-28781
- EPSS 0.28%
- Veröffentlicht 14.05.2024 15:14:41
- Zuletzt bearbeitet 27.01.2025 18:31:09
IBM UrbanCode Deploy (UCD) 7.0 through 7.0.5.20, 7.1 through 7.1.2.16, 7.2 through 7.2.3.9, 7.3 through 7.3.2.4, and 8.0 through 8.0.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the ...
CVE-2024-22359
- EPSS 0.37%
- Veröffentlicht 12.04.2024 17:17:22
- Zuletzt bearbeitet 29.01.2025 21:29:50
IBM UrbanCode Deploy (UCD) 7.0 through 7.0.5.20, 7.1 through 7.1.2.16, 7.2 through 7.2.3.9, 7.3 through 7.3.2.4 and IBM DevOps Deploy 8.0 through 8.0.0.1 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary Java...
CVE-2024-22358
- EPSS 0.41%
- Veröffentlicht 12.04.2024 17:17:22
- Zuletzt bearbeitet 29.01.2025 21:29:36
IBM UrbanCode Deploy (UCD) 7.0 through 7.0.5.20, 7.1 through 7.1.2.16, 7.2 through 7.2.3.9, 7.3 through 7.3.2.4 and IBM DevOps Deploy 8.0 through 8.0.0.1 does not invalidate session after logout which could allow an authenticated user to impersonate...
CVE-2024-22339
- EPSS 0.44%
- Veröffentlicht 12.04.2024 17:17:21
- Zuletzt bearbeitet 29.01.2025 21:27:46
IBM UrbanCode Deploy (UCD) 7.0 through 7.0.5.20, 7.1 through 7.1.2.16, 7.2 through 7.2.3.9, 7.3 through 7.3.2.4 and IBM DevOps Deploy 8.0 through 8.0.0.1 is vulnerable to a sensitive information due to insufficient obfuscation of sensitive values fr...
CVE-2024-22334
- EPSS 0.44%
- Veröffentlicht 12.04.2024 17:17:21
- Zuletzt bearbeitet 29.01.2025 21:27:26
IBM UrbanCode Deploy (UCD) 7.0 through 7.0.5.20, 7.1 through 7.1.2.16, 7.2 through 7.2.3.9, 7.3 through 7.3.2.4 and IBM DevOps Deploy 8.0 through 8.0.0.1 could be vulnerable to incomplete revocation of permissions when deleting a custom security res...
CVE-2024-22331
- EPSS 0.19%
- Veröffentlicht 06.02.2024 17:15:10
- Zuletzt bearbeitet 21.11.2024 08:56:04
IBM UrbanCode Deploy (UCD) 7.0 through 7.0.5.19, 7.1 through 7.1.2.15, 7.2 through 7.2.3.8, 7.3 through 7.3.2.3, and IBM UrbanCode Deploy (UCD) - IBM DevOps Deploy 8.0.0.0 could disclose sensitive user information when installing the Windows agent. ...