2 matches found
Security Bulletin: IBM Urbancode Deploy (UCD) is vulnerable to Insufficiently Protected LDAP Search Credentials ( CVE-2022-40751 )
Summary In certain circumstances, an Administrator user could gain access to previously configured LDAP search credentials used during authentication. Vulnerability Details CVEID:CVE-2022-40751 DESCRIPTION: IBM UrbanCode Deploy UCD 6.2.7.0 through 6.2.7.17, 7.0.0.0 through 7.0.5.12, 7.1.0.0 throu...
CVE-2022-40751
CVE-2022-40751 affects IBM UrbanCode Deploy (UCD) versions: 6.2.7.0–6.2.7.17; 7.0.0.0–7.0.5.12; 7.1.0.0–7.1.2.8; 7.2.0.0–7.2.3.1. An administrator with "Manage Security" permissions could recover credentials saved for LDAP authentication, exposing sensitive data. IBM X-Force ID: 236601. The fixed...