Ibm

Urbancode Deploy

63 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2025-36162

  • EPSS 0.03%
  • Veröffentlicht 02.09.2025 18:52:08
  • Zuletzt bearbeitet 04.09.2025 15:36:56

IBM DevOps Deploy / IBM UrbanCode Deploy (UCD) 8.1 before 8.1.2.2 could allow an authenticated user to obtain sensitive information about configuration on the system.

5.5

CVE-2025-1998

  • EPSS 0.01%
  • Veröffentlicht 27.03.2025 14:41:56
  • Zuletzt bearbeitet 14.08.2025 19:13:16

IBM UrbanCode Deploy (UCD) through 7.1.2.21, 7.2 through 7.2.3.14, and 7.3 through 7.3.2.0 / IBM DevOps Deploy 8.0 through 8.0.1.4 and 8.1 through 8.1 stores potentially sensitive authentication token information in log files that could be read by ...

4.6

CVE-2025-1997

  • EPSS 0.02%
  • Veröffentlicht 27.03.2025 14:39:48
  • Zuletzt bearbeitet 29.09.2025 18:15:31

IBM UrbanCode Deploy (UCD) 7.0 through 7.0.5.25, 7.1 through 7.1.2.21, 7.2 through 7.2.3.14, and 7.3 through 7.3.2.0 / IBM DevOps Deploy 8.0 through 8.0.1.4 and 8.1 through 8.1 is vulnerable to HTML injection. This vulnerability may allow a user to...

6.3

CVE-2024-56469

  • EPSS 0.01%
  • Veröffentlicht 27.03.2025 14:32:51
  • Zuletzt bearbeitet 14.08.2025 01:58:37

IBM UrbanCode Deploy (UCD) 7.1 through 7.1.2.22, 7.2 through 7.2.3.15, and 7.3 through 7.3.2.10 / IBM DevOps Deploy 8.0 through 8.0.1.5 and 8.1 through 8.1.0.1 could allow unauthorized access to other services or potential exposure of sensitive data ...

7.2

CVE-2024-55904

  • EPSS 0.09%
  • Veröffentlicht 14.02.2025 04:15:08
  • Zuletzt bearbeitet 18.08.2025 18:14:40

IBM DevOps Deploy 8.0 through 8.0.1.4, 8.1 through 8.1.0.0 / IBM UrbanCode Deploy 7.0 through 7.0.5.25, 7.1 through 7.1.2.21, 7.2 through 7.2.3.14, and 7.3 through 7.3.2.9 could allow a remote privileged authenticated attacker to execute arbitrary co...

6.5

CVE-2024-54176

  • EPSS 0.05%
  • Veröffentlicht 08.02.2025 17:15:21
  • Zuletzt bearbeitet 15.08.2025 12:33:18

IBM DevOps Deploy 8.0 through 8.0.1.4, 8.1 through 8.1.0.0 and IBM UrbanCode Deploy (UCD) 7.0 through 7.0.5.25, 7.1 through 7.1.2.21, 7.2 through 7.2.3.14 and 7.3 through 7.3.2 could allow an authenticated user to obtain sensitive information about o...

5.5

CVE-2024-45091

  • EPSS 0.01%
  • Veröffentlicht 21.01.2025 01:15:07
  • Zuletzt bearbeitet 29.01.2025 21:12:41

IBM UrbanCode Deploy (UCD) 7.0 through 7.0.5.24, 7.1 through 7.1.2.10, and 7.2 through 7.2.3.13 stores potentially sensitive information in log files that could be read by a local user with access to HTTP request logs.

3.1

CVE-2024-51472

  • EPSS 0.08%
  • Veröffentlicht 06.01.2025 17:15:38
  • Zuletzt bearbeitet 20.06.2025 18:09:43

IBM UrbanCode Deploy (UCD) 7.2 through 7.2.3.13, 7.3 through 7.3.2.8, and IBM DevOps Deploy 8.0 through 8.0.1.3 are vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to se...

5.4

CVE-2024-28781

  • EPSS 0.28%
  • Veröffentlicht 14.05.2024 15:14:41
  • Zuletzt bearbeitet 27.01.2025 18:31:09

IBM UrbanCode Deploy (UCD) 7.0 through 7.0.5.20, 7.1 through 7.1.2.16, 7.2 through 7.2.3.9, 7.3 through 7.3.2.4, and 8.0 through 8.0.0.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the ...

6.1

CVE-2024-22359

  • EPSS 0.22%
  • Veröffentlicht 12.04.2024 17:17:22
  • Zuletzt bearbeitet 29.01.2025 21:29:50

IBM UrbanCode Deploy (UCD) 7.0 through 7.0.5.20, 7.1 through 7.1.2.16, 7.2 through 7.2.3.9, 7.3 through 7.3.2.4 and IBM DevOps Deploy 8.0 through 8.0.0.1 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary Java...