Security Bulletin: CVE-2019-4666 IBM UrbanCode Build (UCB) could allow a local user to obtain sensitive information by unmasking certain secure values in documents.

Summary IBM UrbanCode Build UCB could allow a local user to obtain sensitive information by unmasking certain secure values in documents. Vulnerability Details CVEID: CVE-2019-4666 DESCRIPTION: IBM UrbanCode Deploy UCD could allow a local user to obtain sensitive information by unmasking certain...

CVE-2019-4666

IBM UrbanCode Deploy UCD 7.0.3 and IBM UrbanCode Build 6.1.5 could allow a local user to obtain sensitive information by unmasking certain secure values in documents. IBM X-Force ID: 171248...

Code injection

IBM UrbanCode Deploy UCD 7.0.3 and IBM UrbanCode Build 6.1.5 could allow a local user to obtain sensitive information by unmasking certain secure values in documents. IBM X-Force ID: 171248...

CVE-2019-4666

IBM UrbanCode Deploy UCD 7.0.3 and IBM UrbanCode Build 6.1.5 could allow a local user to obtain sensitive information by unmasking certain secure values in documents. IBM X-Force ID: 171248...

Security Bulletin: Vulnerabilities in Apache Commons Collections and Apache Groovy affects IBM UrbanCode Build (CVE-2015-7450, CVE-2015-3253)

Summary Apache Commons Collections and Apache Groovy vulnerabilities for handling Java object deserialization were addressed by IBM UrbanCode Build Vulnerability Details CVE-ID: CVE-2015-7450 Description: Apache Commons Collections could allow a remote attacker to execute arbitrary code on the...

Security Bulletin: Cross-site scripting vulnerability on the Projects page in IBM UrbanCode Build (CVE-2015-1983)

Summary IBM UrbanCode Build is vulnerable to cross-site scripting on the Projects page. Vulnerability Details CVE-ID: CVE-2015-1983 Description: IBM UrbanCode Build is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this...

Security Bulletin: Vulnerability in Apache Tomcat affects IBM UrbanCode Build (CVE-2014-0227)

Summary Apache Tomcat is vulnerable to HTTP request smuggling. Apache Tomcat is used by IBM UrbanCode Build. Vulnerability Details CVE-ID: CVE-2014-0227 Description: Apache Tomcat is vulnerable to HTTP request smuggling. A remote attacker could send a specially-crafted request in a malformed...

CVE-2015-1983

Cross-site scripting XSS vulnerability in the Projects page in IBM UrbanCode Build 6.1.x before 6.1.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...

Cross site scripting

Cross-site scripting XSS vulnerability in the Projects page in IBM UrbanCode Build 6.1.x before 6.1.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...

CVE-2015-1983

Cross-site scripting XSS vulnerability in the Projects page in IBM UrbanCode Build 6.1.x before 6.1.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL...

CVE-2015-1983

IBM UrbanCode Build is vulnerable to cross-site scripting on the Projects page (CVE-2015-1983). The issue is caused by improper validation of user-supplied input, allowing remote authenticated users to execute script via a crafted URL. Affected versions: 6.1.0, 6.1.0.1, and 6.1.0.2 on all support...

IBM UrbanCode Build Cross-Site Scripting Vulnerability

IBM UrbanCode Build is a continuous integration and build management server from IBM USA. A cross-site scripting vulnerability exists in IBM UrbanCode Build. A remote attacker can exploit this vulnerability to inject arbitrary Web script or HTML with the help of a specially crafted URL...