CVE-2024-56469

🗓️ 27 Mar 2025 14:32:51Reported by ibmType

IBM UrbanCode Deploy prior versions expose sensitive data due to missing authentication in Agent Relay service.

Reporter	Title	Published	Views	Family All 10
IBM Security Bulletins	Security Bulletin: IBM DevOps Deploy / IBM UrbanCode Deploy (UCD) is susceptible to unauthroized access to other services (CVE-2024-56469)	27 Mar 202515:17	–	ibm
Circl	CVE-2024-56469	1 Sep 202510:26	–	circl
CNNVD	IBM UrbanCode Deploy和IBM DevOps Deploy 访问控制错误漏洞	27 Mar 202500:00	–	cnnvd
Cvelist	CVE-2024-56469 IBM UrbanCode Deploy (UCD) / IBM DevOps Deploy missing authentication	27 Mar 202514:32	–	cvelist
EUVD	EUVD-2025-8499	3 Oct 202520:07	–	euvd
NVD	CVE-2024-56469	27 Mar 202515:15	–	nvd
OSV	CVE-2024-56469	27 Mar 202515:15	–	osv
Positive Technologies	PT-2025-13204 · Ibm · Ibm Devops Deploy +1	27 Mar 202500:00	–	ptsecurity
RedhatCVE	CVE-2024-56469	29 Mar 202515:21	–	redhatcve
Vulnrichment	CVE-2024-56469 IBM UrbanCode Deploy (UCD) / IBM DevOps Deploy missing authentication	27 Mar 202514:32	–	vulnrichment

NVD

Vulners

Node

ibm devops_deployRange8.0.0.0–8.0.1.5

ibm devops_deployMatch8.1.0.0

ibm urbancode_deployRange7.1.0.0–7.1.2.23

ibm urbancode_deployRange7.2.0.0–7.2.3.16

ibm urbancode_deployRange7.3.0.0–7.3.2.11

[
  {
    "cpes": [
      "cpe:2.3:a:ibm:urbancode_deploy:7.1:*:*:*:*:*:*:*",
      "cpe:2.3:a:ibm:urbancode_deploy:7.1.2.22:*:*:*:*:*:*:*",
      "cpe:2.3:a:ibm:urbancode_deploy:7.2:*:*:*:*:*:*:*",
      "cpe:2.3:a:ibm:urbancode_deploy:7.2.3.15:*:*:*:*:*:*:*",
      "cpe:2.3:a:ibm:urbancode_deploy:7.3:*:*:*:*:*:*:*",
      "cpe:2.3:a:ibm:urbancode_deploy:7.3.2.10:*:*:*:*:*:*:*"
    ],
    "defaultStatus": "unaffected",
    "product": "UrbanCode Deploy",
    "vendor": "IBM",
    "versions": [
      {
        "lessThanOrEqual": "7.1.2.22",
        "status": "affected",
        "version": "7.1",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "7.2.3.15",
        "status": "affected",
        "version": "7.2",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "7.3.2.10",
        "status": "affected",
        "version": "7.3",
        "versionType": "semver"
      }
    ]
  },
  {
    "cpes": [
      "cpe:2.3:a:ibm:devops_deploy:8.0.0.0:*:*:*:*:*:*:*",
      "cpe:2.3:a:ibm:devops_deploy:8.0.1.5:*:*:*:*:*:*:*",
      "cpe:2.3:a:ibm:devops_deploy:8.1.0.0:*:*:*:*:*:*:*",
      "cpe:2.3:a:ibm:devops_deploy:8.1.0.1:*:*:*:*:*:*:*"
    ],
    "defaultStatus": "unaffected",
    "product": "DevOps Deploy",
    "vendor": "IBM",
    "versions": [
      {
        "lessThanOrEqual": "8.0.1.5",
        "status": "affected",
        "version": "8.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "8.1.0.1",
        "status": "affected",
        "version": "8.1",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/7229031

01 Sep 2025 10:14Current

6.8Medium risk

Vulners AI Score6.8

CVSS 3.16.3

EPSS0.00047

SSVC

CWE-306