Ibm

Urbancode Deploy

66 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.69%
  • Veröffentlicht 01.04.2022 17:15:09
  • Zuletzt bearbeitet 21.11.2024 06:46:38

IBM UrbanCode Deploy (UCD) 7.0.5, 7.1.0, 7.1.1, and 7.1.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 218859.

  • EPSS 0.64%
  • Veröffentlicht 08.07.2021 16:15:08
  • Zuletzt bearbeitet 21.11.2024 06:01:40

IBM UrbanCode Deploy (UCD) 6.2.7.3, 6.2.7.4, 6.2.7.8 , 6.2.7.9, 7.0.3.0, 7.0.4.0, 7.0.5.4, 7.1.0.0, 7.1.1.0, 7.1.1.1, and 7.1.1.2 could allow an authenticated user with certain permissions to initiate an agent upgrade through the CLI interface. IBM X...

  • EPSS 0.16%
  • Veröffentlicht 30.03.2021 16:15:14
  • Zuletzt bearbeitet 21.11.2024 05:33:27

IBM UrbanCode Deploy (UCD) 7.0.3.0, 7.0.4.0, 7.0.5.3, 7.0.5.4, 7.1.0.0, 7.1.1.0, 7.1.1.1, and 7.1.1.2, stores keystore passwords in plain text after a manual edit, which can be read by a local user. IBM X-Force ID: 191944.

  • EPSS 0.17%
  • Veröffentlicht 30.03.2021 16:15:14
  • Zuletzt bearbeitet 21.11.2024 05:33:22

IBM UrbanCode Deploy (UCD) 6.2.7.9, 7.0.5.4, and 7.1.1.1 stores user credentials in plain in clear text which can be read by a local user. IBM X-Force ID: 190908.

  • EPSS 0.58%
  • Veröffentlicht 30.03.2021 16:15:14
  • Zuletzt bearbeitet 21.11.2024 05:33:19

IBM UrbanCode Deploy (UCD) 6.2.7.9, 7.0.5.4, and 7.1.1.1 could allow an authenticated user to initiate a plugin or compare process resources that they should not have access to. IBM X-Force ID: 190293.

  • EPSS 0.81%
  • Veröffentlicht 06.11.2020 14:15:17
  • Zuletzt bearbeitet 21.11.2024 05:32:47

IBM UrbanCode Deploy (UCD) 6.2.7.3, 6.2.7.4, 7.0.3.0, and 7.0.4.0 could disclose sensitive information to an authenticated user that could be used in further attacks against the system. IBM X-Force ID: 181858.

  • EPSS 0.98%
  • Veröffentlicht 06.11.2020 14:15:17
  • Zuletzt bearbeitet 21.11.2024 05:32:47

IBM UrbanCode Deploy (UCD) 6.2.7.3, 6.2.7.4, 7.0.3.0, and 7.0.4.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks agai...

  • EPSS 0.86%
  • Veröffentlicht 06.11.2020 14:15:17
  • Zuletzt bearbeitet 21.11.2024 05:32:47

IBM UrbanCode Deploy (UCD) 6.2.7.3, 6.2.7.4, 7.0.3.0, and 7.0.4.0 could allow an authenticated user to bypass security. A user with access to a snapshot could apply unauthorized additional statuses via direct rest calls. IBM X-Force ID: 181856.

  • EPSS 2.05%
  • Veröffentlicht 05.08.2020 14:15:13
  • Zuletzt bearbeitet 21.11.2024 05:32:47

IBM UrbanCode Deploy (UCD) 6.2.7.3, 6.2.7.4, 7.0.3.0, and 7.0.4.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume m...

  • EPSS 0.81%
  • Veröffentlicht 11.05.2020 18:15:11
  • Zuletzt bearbeitet 21.11.2024 04:43:56

IBM UrbanCode Deploy (UCD) 7.0.5.2 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information us...