Urbancode Deploy@6.2.1.2 Security Vulnerabilities and Issues — Urbancode Deploy@6.2.1.2 CVE List

Lucene search

IbmUrbancode Deploy6.2.1.2

5 matches found

CVE•added 2018/08/13 4:29 p.m.•43 views

CVE-2017-1749

IBM UrbanCode Deploy 6.1 through 6.9.6.0 could allow a remote attacker to traverse directories on the system. An unauthenticated attacker could alter UCD deployments. IBM X-Force ID: 135522.

5.3CVSS5.2AI score0.00532EPSS

CVE•added 2018/05/25 2:29 p.m.•40 views

CVE-2017-1752

IBM UrbanCode Deploy 6.1 and 6.2 could allow an authenticated privileged user to obtain highly sensitive information. IBM X-Force ID: 135547.

4.9CVSS4.7AI score0.00286EPSS

CVE•added 2017/04/25 6:59 p.m.•39 views

CVE-2017-1149

IBM UrbanCode Deploy (UCD) 6.0, 6.1, and 6.2 is vulnerable to a denial of service, caused by an XML External Entity Injection (XXE) error when processing XML data. A remote attacker could exploit this vulnerability to expose highly sensitive information or consume all available memory resources. IB...

8.1CVSS8AI score0.00359EPSS

CVE•added 2018/01/09 8:29 p.m.•39 views

CVE-2017-1493

IBM UrbanCode Deploy (UCD) 6.1 and 6.2 could allow an authenticated user to edit objects that they should not have access to due to improper access controls. IBM X-Force ID: 128691.

5.5CVSS5.3AI score0.00135EPSS

CVE•added 2017/03/08 7:59 p.m.•34 views

CVE-2016-9006

IBM UrbanCode Deploy 6.1 and 6.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM Reference #: C1000264.

5.4CVSS5.2AI score0.00258EPSS