2324 matches found
CVE-2024-45091
IBM UrbanCode Deploy UCD 7.0 through 7.0.5.24, 7.1 through 7.1.2.10, and 7.2 through 7.2.3.13 stores potentially sensitive information in log files that could be read by a local user with access to HTTP request logs...
CVE-2024-45091
IBM UrbanCode Deploy UCD 7.0 through 7.0.5.24, 7.1 through 7.1.2.10, and 7.2 through 7.2.3.13 stores potentially sensitive information in log files that could be read by a local user with access to HTTP request logs...
CVE-2024-45091 IBM UrbanCode Deploy information disclosure
IBM UrbanCode Deploy UCD 7.0 through 7.0.5.24, 7.1 through 7.1.2.10, and 7.2 through 7.2.3.13 stores potentially sensitive information in log files that could be read by a local user with access to HTTP request logs...
CVE-2024-45091 IBM UrbanCode Deploy information disclosure
IBM UrbanCode Deploy UCD 7.0 through 7.0.5.24, 7.1 through 7.1.2.10, and 7.2 through 7.2.3.13 stores potentially sensitive information in log files that could be read by a local user with access to HTTP request logs...
CVE-2024-45091
IBM UrbanCode Deploy (UCD) versions 7.0–7.0.5.24, 7.1–7.1.2.10, and 7.2–7.2.3.13 store potentially sensitive information in HTTP request log files, which could be read by a local user with access to logs. Root cause: sensitive information is written to log files. Impact: confidentiality of data i...
IBM UrbanCode Deploy 日志信息泄露漏洞
IBM UrbanCode Deploy IBM UCD is a suite of application automation deployment tools from International Business Machines IBM. The tool is based on an application deployment automation management information model, and through remote agent technology, to realize the automation of complex applicatio...
CVE-2024-51472
IBM UrbanCode Deploy UCD 7.2 through 7.2.3.13, 7.3 through 7.3.2.8, and IBM DevOps Deploy 8.0 through 8.0.1.3 are vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure...
CVE-2024-51472
IBM UrbanCode Deploy UCD 7.2 through 7.2.3.13, 7.3 through 7.3.2.8, and IBM DevOps Deploy 8.0 through 8.0.1.3 are vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure...
CVE-2024-51472 IBM DevOps Deploy / IBM UrbanCode Deploy HTML injection
IBM UrbanCode Deploy UCD 7.2 through 7.2.3.13, 7.3 through 7.3.2.8, and IBM DevOps Deploy 8.0 through 8.0.1.3 are vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure...
CVE-2024-51472 IBM DevOps Deploy / IBM UrbanCode Deploy HTML injection
IBM UrbanCode Deploy UCD 7.2 through 7.2.3.13, 7.3 through 7.3.2.8, and IBM DevOps Deploy 8.0 through 8.0.1.3 are vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure...
CVE-2024-51472
CVE-2024-51472 affects IBM UrbanCode Deploy (UCD) versions 7.2 (up to 7.2.3.13), 7.3 (up to 7.3.2.8), and IBM DevOps Deploy 8.0–8.0.1.3. The issue is HTML injection in the Web UI that may disclose sensitive information. Remediation is to upgrade to one of: 7.2.3.14, 7.3.2.9, 8.0.1.4, or 8.1.0.0 o...
IBM UrbanCode Deploy 安全漏洞
IBM UrbanCode Deploy IBM UCD is a suite of application automation deployment tools from International Business Machines IBM. The tool is based on an application deployment automation management information model and uses remote agent technology to automate the deployment of complex applications i...
Malicious code in devnet-deploy (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 946555a5bdd72332d358a9159bd462ebf6acd622cd681738025cccf81c503d98 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in deploy-pages (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 176f868a287ef5a5af82a0534c36ef855e91bf0a605106d0af59408ed0fba7e5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-11966 Malicious code in deploy-pages (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 176f868a287ef5a5af82a0534c36ef855e91bf0a605106d0af59408ed0fba7e5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in hardhat-deploy-others (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 85a3b67882ce27c0db4858f9509396a2a74b670426897002d8ccc9d29537c008 The OpenSSF Package Analysis project identified 'hardhat-deploy-others' @ 9.9.10 npm as malicious. It is considered malicious because: - The...
MAL-2024-11913 Malicious code in hardhat-deploy-others (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 85a3b67882ce27c0db4858f9509396a2a74b670426897002d8ccc9d29537c008 The OpenSSF Package Analysis project identified 'hardhat-deploy-others' @ 9.9.10 npm as malicious. It is considered malicious because: - The...
PDQ Deploy allows reuse of deleted credentials that can compromise a device and facilitate lateral movement
Overview PDQ Deploy is a service intended for usage by system administrators for the deployment of software or updates to targeted machines within their network. PDQ Deploy uses "run modes" to deploy software to their target devices. The run mode "Deploy User" insecurely creates credentials on th...
CVE-2024-42195
HCL DevOps Deploy / HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure...
CVE-2024-42195
HCL DevOps Deploy / HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure...