Lucene search
K

2324 matches found

OSV
OSV
added 2025/01/21 1:15 a.m.2 views

CVE-2024-45091

IBM UrbanCode Deploy UCD 7.0 through 7.0.5.24, 7.1 through 7.1.2.10, and 7.2 through 7.2.3.13 stores potentially sensitive information in log files that could be read by a local user with access to HTTP request logs...

5.5CVSS5.8AI score0.00201EPSS
Exploits0References1
NVD
NVD
added 2025/01/21 1:15 a.m.15 views

CVE-2024-45091

IBM UrbanCode Deploy UCD 7.0 through 7.0.5.24, 7.1 through 7.1.2.10, and 7.2 through 7.2.3.13 stores potentially sensitive information in log files that could be read by a local user with access to HTTP request logs...

6.2CVSS0.00201EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/21 12:41 a.m.25 views

CVE-2024-45091 IBM UrbanCode Deploy information disclosure

IBM UrbanCode Deploy UCD 7.0 through 7.0.5.24, 7.1 through 7.1.2.10, and 7.2 through 7.2.3.13 stores potentially sensitive information in log files that could be read by a local user with access to HTTP request logs...

6.2CVSS0.00201EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/21 12:41 a.m.11 views

CVE-2024-45091 IBM UrbanCode Deploy information disclosure

IBM UrbanCode Deploy UCD 7.0 through 7.0.5.24, 7.1 through 7.1.2.10, and 7.2 through 7.2.3.13 stores potentially sensitive information in log files that could be read by a local user with access to HTTP request logs...

6.2CVSS6AI score0.00201EPSS
Exploits0References1
CVE
CVE
added 2025/01/21 12:41 a.m.98 views

CVE-2024-45091

IBM UrbanCode Deploy (UCD) versions 7.0–7.0.5.24, 7.1–7.1.2.10, and 7.2–7.2.3.13 store potentially sensitive information in HTTP request log files, which could be read by a local user with access to logs. Root cause: sensitive information is written to log files. Impact: confidentiality of data i...

6.2CVSS5.9AI score0.00201EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/01/21 12:0 a.m.6 views

IBM UrbanCode Deploy 日志信息泄露漏洞

IBM UrbanCode Deploy IBM UCD is a suite of application automation deployment tools from International Business Machines IBM. The tool is based on an application deployment automation management information model, and through remote agent technology, to realize the automation of complex applicatio...

6.2CVSS5.6AI score0.00201EPSS
Exploits0References2
OSV
OSV
added 2025/01/06 5:15 p.m.2 views

CVE-2024-51472

IBM UrbanCode Deploy UCD 7.2 through 7.2.3.13, 7.3 through 7.3.2.8, and IBM DevOps Deploy 8.0 through 8.0.1.3 are vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure...

3.1CVSS5.9AI score
Exploits0References1
NVD
NVD
added 2025/01/06 5:15 p.m.25 views

CVE-2024-51472

IBM UrbanCode Deploy UCD 7.2 through 7.2.3.13, 7.3 through 7.3.2.8, and IBM DevOps Deploy 8.0 through 8.0.1.3 are vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure...

3.1CVSS0.00244EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/06 4:38 p.m.11 views

CVE-2024-51472 IBM DevOps Deploy / IBM UrbanCode Deploy HTML injection

IBM UrbanCode Deploy UCD 7.2 through 7.2.3.13, 7.3 through 7.3.2.8, and IBM DevOps Deploy 8.0 through 8.0.1.3 are vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure...

3.1CVSS6.5AI score0.00244EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/06 4:38 p.m.22 views

CVE-2024-51472 IBM DevOps Deploy / IBM UrbanCode Deploy HTML injection

IBM UrbanCode Deploy UCD 7.2 through 7.2.3.13, 7.3 through 7.3.2.8, and IBM DevOps Deploy 8.0 through 8.0.1.3 are vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure...

3.1CVSS0.00244EPSS
Exploits0References1
CVE
CVE
added 2025/01/06 4:38 p.m.60 views

CVE-2024-51472

CVE-2024-51472 affects IBM UrbanCode Deploy (UCD) versions 7.2 (up to 7.2.3.13), 7.3 (up to 7.3.2.8), and IBM DevOps Deploy 8.0–8.0.1.3. The issue is HTML injection in the Web UI that may disclose sensitive information. Remediation is to upgrade to one of: 7.2.3.14, 7.3.2.9, 8.0.1.4, or 8.1.0.0 o...

3.1CVSS3.8AI score0.00244EPSS
Exploits0References1Affected Software2
CNNVD
CNNVD
added 2025/01/06 12:0 a.m.4 views

IBM UrbanCode Deploy 安全漏洞

IBM UrbanCode Deploy IBM UCD is a suite of application automation deployment tools from International Business Machines IBM. The tool is based on an application deployment automation management information model and uses remote agent technology to automate the deployment of complex applications i...

3.1CVSS6.2AI score0.00244EPSS
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/12/27 7:23 a.m.3 views

Malicious code in devnet-deploy (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 946555a5bdd72332d358a9159bd462ebf6acd622cd681738025cccf81c503d98 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/12/19 9:55 a.m.6 views

Malicious code in deploy-pages (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 176f868a287ef5a5af82a0534c36ef855e91bf0a605106d0af59408ed0fba7e5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2024/12/19 9:55 a.m.6 views

MAL-2024-11966 Malicious code in deploy-pages (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 176f868a287ef5a5af82a0534c36ef855e91bf0a605106d0af59408ed0fba7e5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/12/18 10:0 a.m.3 views

Malicious code in hardhat-deploy-others (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 85a3b67882ce27c0db4858f9509396a2a74b670426897002d8ccc9d29537c008 The OpenSSF Package Analysis project identified 'hardhat-deploy-others' @ 9.9.10 npm as malicious. It is considered malicious because: - The...

7.1AI score
Exploits0
OSV
OSV
added 2024/12/18 10:0 a.m.5 views

MAL-2024-11913 Malicious code in hardhat-deploy-others (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 85a3b67882ce27c0db4858f9509396a2a74b670426897002d8ccc9d29537c008 The OpenSSF Package Analysis project identified 'hardhat-deploy-others' @ 9.9.10 npm as malicious. It is considered malicious because: - The...

7.3AI score
Exploits0
CERT
CERT
added 2024/12/11 12:0 a.m.17 views

PDQ Deploy allows reuse of deleted credentials that can compromise a device and facilitate lateral movement

Overview PDQ Deploy is a service intended for usage by system administrators for the deployment of software or updates to targeted machines within their network. PDQ Deploy uses "run modes" to deploy software to their target devices. The run mode "Deploy User" insecurely creates credentials on th...

7.7AI score
Exploits0References2
OSV
OSV
added 2024/12/05 5:15 a.m.3 views

CVE-2024-42195

HCL DevOps Deploy / HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure...

6.8CVSS5.9AI score0.00286EPSS
Exploits0References1
NVD
NVD
added 2024/12/05 5:15 a.m.15 views

CVE-2024-42195

HCL DevOps Deploy / HCL Launch is vulnerable to HTML injection. This vulnerability may allow a user to embed arbitrary HTML tags in the Web UI potentially leading to sensitive information disclosure...

6.8CVSS0.00286EPSS
Exploits0References1
Rows per page
Query Builder