CVE-2016-0320

Summary

IBM UrbanCode Deploy could allow an authenticated user to modify Ucd objects due to multiple REST endpoints not properly authorizing users editing UCD objects. This could affect the behavior of legitimately triggered processes.

Affected Software

VendorProductVersion RangeStatus
IBM CorporationUrbanCode Deploy6.1.0.2affected
IBM CorporationUrbanCode Deploy6.0affected
IBM CorporationUrbanCode Deploy6.0.1affected
IBM CorporationUrbanCode Deploy6.0.1.1affected
IBM CorporationUrbanCode Deploy6.0.1.2affected
IBM CorporationUrbanCode Deploy6.0.1.3affected
IBM CorporationUrbanCode Deploy6.0.1.4affected
IBM CorporationUrbanCode Deploy6.0.1.5affected
IBM CorporationUrbanCode Deploy6.0.1.6affected
IBM CorporationUrbanCode Deploy6.1affected
IBM CorporationUrbanCode Deploy6.1.0.1affected
IBM CorporationUrbanCode Deploy6.1.0.3affected
IBM CorporationUrbanCode Deploy6.0.1.7affected
IBM CorporationUrbanCode Deploy6.0.1.8affected
IBM CorporationUrbanCode Deploy6.1.0.4affected
IBM CorporationUrbanCode Deploy6.1.1affected
IBM CorporationUrbanCode Deploy6.1.1.1affected
IBM CorporationUrbanCode Deploy6.1.1.2affected
IBM CorporationUrbanCode Deploy6.1.1.3affected
IBM CorporationUrbanCode Deploy6.1.1.4affected
IBM CorporationUrbanCode Deploy6.1.1.5affected
IBM CorporationUrbanCode Deploy6.0.1.9affected
IBM CorporationUrbanCode Deploy6.1.1.6affected
IBM CorporationUrbanCode Deploy6.1.1.7affected
IBM CorporationUrbanCode Deploy6.1.2affected
IBM CorporationUrbanCode Deploy6.0.1.10affected
IBM CorporationUrbanCode Deploy6.0.1.11affected
IBM CorporationUrbanCode Deploy6.1.1.8affected
IBM CorporationUrbanCode Deploy6.1.3affected
IBM CorporationUrbanCode Deploy6.1.3.1affected
IBM CorporationUrbanCode Deploy6.2affected
IBM CorporationUrbanCode Deploy6.2.0.1affected
IBM CorporationUrbanCode Deploy6.0.1.12affected
IBM CorporationUrbanCode Deploy6.1.3.2affected
IBM CorporationUrbanCode Deploy6.2.0.2affected
IBM CorporationUrbanCode Deploy6.2.1affected
IBM CorporationUrbanCode Deploy6.0.1.13affected
IBM CorporationUrbanCode Deploy6.2.1.1affected
IBM CorporationUrbanCode Deploy6.0.1.14affected
IBM CorporationUrbanCode Deploy6.1.3.3affected
IBM CorporationUrbanCode Deploy6.2.1.2affected
IBM CorporationUrbanCode Deploy6.2.2affected

Weaknesses

  • Bypass Security

ADP Enrichment

CVE Program Container

Additional References

References