CVE-2025-24826

Local privilege escalation due to insecure folder permissions. The following products are affected: Acronis Snap Deploy Windows before build 4625...

CVE-2025-24826

CVE-2025-24826 affects Acronis Snap Deploy (Windows) , with vulnerable component defined as the installation/build prior to 4625. The root cause is insecure folder permissions leading to a local privilege escalation . The CVSS data indicates a local attack vector with high impact on confidentiali...

Acronis Snap Deploy 安全漏洞

Acronis Snap Deploy is a platform for batch deployment of system images from Acronis Switzerland. A security vulnerability exists in Acronis Snap Deploy that stems from a local elevation of privilege due to insecure folder permissions...

Malicious code in ig-grunt-maven-multi-deploy (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9ba822293906e2a34cd29d237818bee0b19bbafb28ea1600c9592ac2554d8501 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2024-45091

IBM UrbanCode Deploy UCD 7.0 through 7.0.5.24, 7.1 through 7.1.2.10, and 7.2 through 7.2.3.13 stores potentially sensitive information in log files that could be read by a local user with access to HTTP request logs...

CVE-2024-45091

IBM UrbanCode Deploy UCD 7.0 through 7.0.5.24, 7.1 through 7.1.2.10, and 7.2 through 7.2.3.13 stores potentially sensitive information in log files that could be read by a local user with access to HTTP request logs...

CVE-2024-45091 IBM UrbanCode Deploy information disclosure

IBM UrbanCode Deploy UCD 7.0 through 7.0.5.24, 7.1 through 7.1.2.10, and 7.2 through 7.2.3.13 stores potentially sensitive information in log files that could be read by a local user with access to HTTP request logs...

CVE-2024-45091

IBM UrbanCode Deploy (UCD) versions 7.0–7.0.5.24, 7.1–7.1.2.10, and 7.2–7.2.3.13 store potentially sensitive information in HTTP request log files, which could be read by a local user with access to logs. Root cause: sensitive information is written to log files. Impact: confidentiality of data i...

CVE-2024-45091 IBM UrbanCode Deploy information disclosure

IBM UrbanCode Deploy UCD 7.0 through 7.0.5.24, 7.1 through 7.1.2.10, and 7.2 through 7.2.3.13 stores potentially sensitive information in log files that could be read by a local user with access to HTTP request logs...

IBM UrbanCode Deploy 日志信息泄露漏洞

IBM UrbanCode Deploy IBM UCD is a suite of application automation deployment tools from International Business Machines IBM. The tool is based on an application deployment automation management information model, and through remote agent technology, to realize the automation of complex applicatio...

CVE-2024-51472

IBM UrbanCode Deploy UCD 7.2 through 7.2.3.13, 7.3 through 7.3.2.8, and IBM DevOps Deploy 8.0 through 8.0.1.3 are vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure...

CVE-2024-51472

IBM UrbanCode Deploy UCD 7.2 through 7.2.3.13, 7.3 through 7.3.2.8, and IBM DevOps Deploy 8.0 through 8.0.1.3 are vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure...

CVE-2024-51472

CVE-2024-51472 affects IBM UrbanCode Deploy (UCD) versions 7.2 (up to 7.2.3.13), 7.3 (up to 7.3.2.8), and IBM DevOps Deploy 8.0–8.0.1.3. The issue is HTML injection in the Web UI that may disclose sensitive information. Remediation is to upgrade to one of: 7.2.3.14, 7.3.2.9, 8.0.1.4, or 8.1.0.0 o...

CVE-2024-51472 IBM DevOps Deploy / IBM UrbanCode Deploy HTML injection

IBM UrbanCode Deploy UCD 7.2 through 7.2.3.13, 7.3 through 7.3.2.8, and IBM DevOps Deploy 8.0 through 8.0.1.3 are vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure...

CVE-2024-51472 IBM DevOps Deploy / IBM UrbanCode Deploy HTML injection

IBM UrbanCode Deploy UCD 7.2 through 7.2.3.13, 7.3 through 7.3.2.8, and IBM DevOps Deploy 8.0 through 8.0.1.3 are vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure...

IBM UrbanCode Deploy 安全漏洞

IBM UrbanCode Deploy IBM UCD is a suite of application automation deployment tools from International Business Machines IBM. The tool is based on an application deployment automation management information model and uses remote agent technology to automate the deployment of complex applications i...

Malicious code in devnet-deploy (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 946555a5bdd72332d358a9159bd462ebf6acd622cd681738025cccf81c503d98 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in deploy-pages (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 176f868a287ef5a5af82a0534c36ef855e91bf0a605106d0af59408ed0fba7e5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2024-11966 Malicious code in deploy-pages (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 176f868a287ef5a5af82a0534c36ef855e91bf0a605106d0af59408ed0fba7e5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in hardhat-deploy-others (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 85a3b67882ce27c0db4858f9509396a2a74b670426897002d8ccc9d29537c008 The OpenSSF Package Analysis project identified 'hardhat-deploy-others' @ 9.9.10 npm as malicious. It is considered malicious because: - The...