CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2307 matches found

RedhatCVE•added 2025/05/23 7:7 a.m.•11 views

CVE-2024-45091

IBM UrbanCode Deploy UCD 7.0 through 7.0.5.24, 7.1 through 7.1.2.10, and 7.2 through 7.2.3.13 stores potentially sensitive information in log files that could be read by a local user with access to HTTP request logs...

6.2CVSS5.9AI score0.00201EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 6:57 a.m.•5 views

CVE-2024-51472

IBM UrbanCode Deploy UCD 7.2 through 7.2.3.13, 7.3 through 7.3.2.8, and IBM DevOps Deploy 8.0 through 8.0.1.3 are vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure...

3.1CVSS6.6AI score0.00244EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 5:15 a.m.•7 views

CVE-2023-47161

IBM UrbanCode Deploy UCD 7.1 through 7.1.2.14, 7.2 through 7.2.3.7, and 7.3 through 7.3.2.2 may mishandle input validation of an uploaded archive file leading to a denial of service due to resource exhaustion. IBM X-Force ID: 270799...

6.5CVSS6.4AI score0.00808EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 4:56 a.m.•5 views

CVE-2023-42015

IBM UrbanCode Deploy UCD 7.1 through 7.1.2.14, 7.2 through 7.2.3.7, and 7.3 through 7.3.2.2 is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure. IBM X-Force ID: 265512...

4.3CVSS6.2AI score0.00573EPSS

Exploits0

RedhatCVE•added 2025/05/23 4:55 a.m.•6 views

CVE-2023-42012

An IBM UrbanCode Deploy Agent 7.2 through 7.2.3.7, and 7.3 through 7.3.2.2 installed as a Windows service in a non-standard location could be subject to a denial of service attack by local accounts. IBM X-Force ID: 265509...

6.2CVSS6.2AI score0.00226EPSS

Exploits0

RedhatCVE•added 2025/05/23 4:54 a.m.•4 views

CVE-2023-2247

In affected versions of Octopus Deploy it is possible to unmask variable secrets using the variable preview function...

5.3CVSS5.7AI score0.0045EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 4:8 a.m.•9 views

CVE-2023-47321

Silverpeas Core 6.3.1 is vulnerable to Incorrect Access Control via the "Porlet Deployer" which allows administrators to deploy .WAR portlets...

4.9CVSS6.8AI score0.00632EPSS

Exploits1

RedhatCVE•added 2025/05/23 2:12 a.m.•7 views

CVE-2023-3509

An issue has been discovered in GitLab affecting all versions before 16.7.6, all versions starting from 16.8 before 16.8.3, all versions starting from 16.9 before 16.9.1. It was possible for group members with sub-maintainer role to change the title of privately accessible deploy keys associated...

5.4CVSS6.5AI score0.00322EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 1:59 a.m.•5 views

CVE-2023-42013

IBM UrbanCode Deploy UCD 7.1 through 7.1.2.14, 7.2 through 7.2.3.7, and 7.3 through 7.3.2.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM...

5.3CVSS6AI score0.00713EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 1:50 a.m.•9 views

CVE-2023-2355

Local privilege escalation due to a DLL hijacking vulnerability. The following products are affected: Acronis Snap Deploy Windows before build 3900...

7.8CVSS7.2AI score0.00152EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 12:57 a.m.•5 views

CVE-2022-43877

IBM UrbanCode Deploy UCD versions up to 7.3.0.1 could disclose sensitive password information during a manual edit of the agentrelay.properties file. IBM X-Force ID: 240148...

5.5CVSS6AI score0.0019EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 12:50 a.m.•4 views

CVE-2022-46771

IBM UrbanCode Deploy UCD 6.2.0.0 through 6.2.7.18, 7.0.5.0 through 7.0.5.13, 7.1.0.0 through 7.1.2.9, 7.2.0.0 through 7.2.3.2 and 7.3.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionalit...

4.6CVSS6.1AI score0.00371EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 12:48 a.m.•6 views

CVE-2022-40751

IBM UrbanCode Deploy UCD 6.2.7.0 through 6.2.7.17, 7.0.0.0 through 7.0.5.12, 7.1.0.0 through 7.1.2.8, and 7.2.0.0 through 7.2.3.1 could allow a user with administrative privileges including "Manage Security" permissions may be able to recover a credential previously saved for performing...

4.9CVSS6.2AI score0.00589EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 12:22 a.m.•11 views

CVE-2022-4870

In affected versions of Octopus Deploy it is possible to discover network details via error message...

5.3CVSS6.9AI score0.0045EPSS

Exploits0

RedhatCVE•added 2025/05/22 11:58 p.m.•8 views

CVE-2022-2416

In affected versions of Octopus Deploy it is possible for a low privileged guest user to craft a request that allows enumeration/recon of an environment...

5.5CVSS6.8AI score0.00259EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 11:49 p.m.•6 views

CVE-2022-2259

In affected versions of Octopus Deploy it is possible for a user to view Workerpools without being explicitly assigned permissions to view these items...

4.3CVSS6.8AI score0.00434EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 11:49 p.m.•6 views

CVE-2022-2258

In affected versions of Octopus Deploy it is possible for a user to view Tagsets without being explicitly assigned permissions to view these items...

4.3CVSS6.8AI score0.00496EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 11:38 p.m.•4 views

CVE-2022-2075

In affected versions of Octopus Deploy it is possible to perform a Regex Denial of Service targeting the build information request validation...

7.5CVSS6.7AI score0.00657EPSS

Exploits0References1