CVE-2024-28781

🗓️ 10 May 2024 15:49:35Reported by ibmType

IBM UrbanCode Deploy (UCD) versions 7.0 to 8.0.0.1 XSS vulnerabilit

Reporter	Title	Published	Views	Family All 8
IBM Security Bulletins	Security Bulletin: IBM DevOps Deploy / IBM UrbanCode Deploy (UCD) is susceptible to a Cross-Site Scripting vulnerability (CVE-2024-28781)	9 May 202420:05	–	ibm
CNNVD	IBM UrbanCode Deploy 跨站脚本漏洞	14 May 202400:00	–	cnnvd
CNVD	IBM UrbanCode Deploy Cross-Site Scripting Vulnerability (CNVD-2024-26496)	30 May 202400:00	–	cnvd
Cvelist	CVE-2024-28781 IBM UrbanCode Deploy cross-site scripting	10 May 202415:49	–	cvelist
EUVD	EUVD-2024-25867	3 Oct 202520:07	–	euvd
NVD	CVE-2024-28781	14 May 202415:14	–	nvd
Positive Technologies	PT-2024-22571 · Ibm · Ibm Urbancode Deploy	10 May 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-28781	23 May 202507:45	–	redhatcve

NVD

Vulners

Node

ibm devops_deployRange8.0.0.0–8.0.1.0

ibm urbancode_deployRange7.0.0.0–7.0.5.21

ibm urbancode_deployRange7.1.0.0–7.1.2.17

ibm urbancode_deployRange7.2.0.0–7.2.3.10

ibm urbancode_deployRange7.3.0.0–7.3.2.5

[
  {
    "defaultStatus": "unaffected",
    "product": "UrbanCode Deploy",
    "vendor": "IBM",
    "versions": [
      {
        "lessThanOrEqual": "7.0.5.20",
        "status": "affected",
        "version": "7.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "7.1.2.16",
        "status": "affected",
        "version": "7.1",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "7.2.3.9",
        "status": "affected",
        "version": "7.2",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "7.3.2.4",
        "status": "affected",
        "version": "7.3",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "8.0.0.1",
        "status": "affected",
        "version": "8.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/285654
ibm	www.ibm.com/support/pages/node/7150747

27 Jan 2025 18:31Current

6Medium risk

Vulners AI Score6

CVSS 3.15.4

EPSS0.0028

CWE-79