Ibm

Urbancode Deploy

63 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.6

CVE-2022-46771

  • EPSS 0.17%
  • Published 20.12.2022 20:15:10
  • Last modified 21.11.2024 07:31:01

IBM UrbanCode Deploy (UCD) 6.2.0.0 through 6.2.7.18, 7.0.5.0 through 7.0.5.13, 7.1.0.0 through 7.1.2.9, 7.2.0.0 through 7.2.3.2 and 7.3.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in ...

4.9

CVE-2022-40751

  • EPSS 0.04%
  • Published 17.11.2022 17:15:11
  • Last modified 21.11.2024 07:21:59

IBM UrbanCode Deploy (UCD) 6.2.7.0 through 6.2.7.17, 7.0.0.0 through 7.0.5.12, 7.1.0.0 through 7.1.2.8, and 7.2.0.0 through 7.2.3.1 could allow a user with administrative privileges including "Manage Security" permissions may be able to recover a cr...

6.5

CVE-2022-35716

  • EPSS 0.14%
  • Published 01.08.2022 11:15:14
  • Last modified 21.11.2024 07:11:32

IBM UrbanCode Deploy (UCD) 6.2.0.0 through 6.2.7.16, 7.0.0.0 through 7.0.5.11, 7.1.0.0 through 7.1.2.7, and 7.2.0.0 through 7.2.3.0 could allow an authenticated user to obtain sensitive information in some instances due to improper security checking....

5.5

CVE-2022-22367

  • EPSS 0.02%
  • Published 01.07.2022 18:15:08
  • Last modified 21.11.2024 06:46:42

IBM UrbanCode Deploy (UCD) 6.2.7.15, 7.0.5.10, 7.1.2.6, and 7.2.2.1 could disclose sensitive database information to a local user in plain text. IBM X-Force ID: 221008.

4.4

CVE-2022-22366

  • EPSS 0.05%
  • Published 01.07.2022 18:15:08
  • Last modified 21.11.2024 06:46:42

IBM UrbanCode Deploy (UCD) 6.2.7.15, 7.0.5.10, 7.1.2.6, and 7.2.2.1 stores user credentials in plain clear text which can be read by a local user. IBM X-Force ID: 22106.

7.5

CVE-2021-39082

  • EPSS 0.14%
  • Published 29.04.2022 16:15:07
  • Last modified 21.11.2024 06:18:33

IBM UrbanCode Deploy (UCD) 7.1.1.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.

8.8

CVE-2022-22315

  • EPSS 0.22%
  • Published 27.04.2022 18:15:07
  • Last modified 21.11.2024 06:46:37

IBM UrbanCode Deploy (UCD) 7.2.2.1 could allow an authenticated user with special permissions to obtain elevated privileges due to improper handling of permissions. IBM X-Force ID: 217955.

7.5

CVE-2022-22327

  • EPSS 0.1%
  • Published 01.04.2022 17:15:09
  • Last modified 21.11.2024 06:46:38

IBM UrbanCode Deploy (UCD) 7.0.5, 7.1.0, 7.1.1, and 7.1.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 218859.

4.3

CVE-2021-29711

  • EPSS 0.08%
  • Published 08.07.2021 16:15:08
  • Last modified 21.11.2024 06:01:40

IBM UrbanCode Deploy (UCD) 6.2.7.3, 6.2.7.4, 6.2.7.8 , 6.2.7.9, 7.0.3.0, 7.0.4.0, 7.0.5.4, 7.1.0.0, 7.1.1.0, 7.1.1.1, and 7.1.1.2 could allow an authenticated user with certain permissions to initiate an agent upgrade through the CLI interface. IBM X...

5.5

CVE-2020-4848

  • EPSS 0.15%
  • Published 30.03.2021 16:15:14
  • Last modified 21.11.2024 05:33:19

IBM UrbanCode Deploy (UCD) 6.2.7.9, 7.0.5.4, and 7.1.1.1 could allow an authenticated user to initiate a plugin or compare process resources that they should not have access to. IBM X-Force ID: 190293.