Ibm

Urbancode Deploy

63 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.6

CVE-2022-46771

  • EPSS 0.17%
  • Veröffentlicht 20.12.2022 20:15:10
  • Zuletzt bearbeitet 21.11.2024 07:31:01

IBM UrbanCode Deploy (UCD) 6.2.0.0 through 6.2.7.18, 7.0.5.0 through 7.0.5.13, 7.1.0.0 through 7.1.2.9, 7.2.0.0 through 7.2.3.2 and 7.3.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in ...

4.9

CVE-2022-40751

  • EPSS 0.04%
  • Veröffentlicht 17.11.2022 17:15:11
  • Zuletzt bearbeitet 21.11.2024 07:21:59

IBM UrbanCode Deploy (UCD) 6.2.7.0 through 6.2.7.17, 7.0.0.0 through 7.0.5.12, 7.1.0.0 through 7.1.2.8, and 7.2.0.0 through 7.2.3.1 could allow a user with administrative privileges including "Manage Security" permissions may be able to recover a cr...

6.5

CVE-2022-35716

  • EPSS 0.14%
  • Veröffentlicht 01.08.2022 11:15:14
  • Zuletzt bearbeitet 21.11.2024 07:11:32

IBM UrbanCode Deploy (UCD) 6.2.0.0 through 6.2.7.16, 7.0.0.0 through 7.0.5.11, 7.1.0.0 through 7.1.2.7, and 7.2.0.0 through 7.2.3.0 could allow an authenticated user to obtain sensitive information in some instances due to improper security checking....

5.5

CVE-2022-22367

  • EPSS 0.02%
  • Veröffentlicht 01.07.2022 18:15:08
  • Zuletzt bearbeitet 21.11.2024 06:46:42

IBM UrbanCode Deploy (UCD) 6.2.7.15, 7.0.5.10, 7.1.2.6, and 7.2.2.1 could disclose sensitive database information to a local user in plain text. IBM X-Force ID: 221008.

4.4

CVE-2022-22366

  • EPSS 0.05%
  • Veröffentlicht 01.07.2022 18:15:08
  • Zuletzt bearbeitet 21.11.2024 06:46:42

IBM UrbanCode Deploy (UCD) 6.2.7.15, 7.0.5.10, 7.1.2.6, and 7.2.2.1 stores user credentials in plain clear text which can be read by a local user. IBM X-Force ID: 22106.

7.5

CVE-2021-39082

  • EPSS 0.14%
  • Veröffentlicht 29.04.2022 16:15:07
  • Zuletzt bearbeitet 21.11.2024 06:18:33

IBM UrbanCode Deploy (UCD) 7.1.1.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.

8.8

CVE-2022-22315

  • EPSS 0.22%
  • Veröffentlicht 27.04.2022 18:15:07
  • Zuletzt bearbeitet 21.11.2024 06:46:37

IBM UrbanCode Deploy (UCD) 7.2.2.1 could allow an authenticated user with special permissions to obtain elevated privileges due to improper handling of permissions. IBM X-Force ID: 217955.

7.5

CVE-2022-22327

  • EPSS 0.1%
  • Veröffentlicht 01.04.2022 17:15:09
  • Zuletzt bearbeitet 21.11.2024 06:46:38

IBM UrbanCode Deploy (UCD) 7.0.5, 7.1.0, 7.1.1, and 7.1.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 218859.

4.3

CVE-2021-29711

  • EPSS 0.08%
  • Veröffentlicht 08.07.2021 16:15:08
  • Zuletzt bearbeitet 21.11.2024 06:01:40

IBM UrbanCode Deploy (UCD) 6.2.7.3, 6.2.7.4, 6.2.7.8 , 6.2.7.9, 7.0.3.0, 7.0.4.0, 7.0.5.4, 7.1.0.0, 7.1.1.0, 7.1.1.1, and 7.1.1.2 could allow an authenticated user with certain permissions to initiate an agent upgrade through the CLI interface. IBM X...

5.5

CVE-2020-4848

  • EPSS 0.15%
  • Veröffentlicht 30.03.2021 16:15:14
  • Zuletzt bearbeitet 21.11.2024 05:33:19

IBM UrbanCode Deploy (UCD) 6.2.7.9, 7.0.5.4, and 7.1.1.1 could allow an authenticated user to initiate a plugin or compare process resources that they should not have access to. IBM X-Force ID: 190293.