CVE-2017-1749

Summary

IBM UrbanCode Deploy 6.1 through 6.9.6.0 could allow a remote attacker to traverse directories on the system. An unauthenticated attacker could alter UCD deployments. IBM X-Force ID: 135522.

Affected Software

VendorProductVersion RangeStatus
IBMUrbanCode Deploy6.1.0.2affected
IBMUrbanCode Deploy6.1affected
IBMUrbanCode Deploy6.1.0.1affected
IBMUrbanCode Deploy6.1.0.3affected
IBMUrbanCode Deploy6.1.0.4affected
IBMUrbanCode Deploy6.1.1affected
IBMUrbanCode Deploy6.1.1.1affected
IBMUrbanCode Deploy6.1.1.2affected
IBMUrbanCode Deploy6.1.1.3affected
IBMUrbanCode Deploy6.1.1.4affected
IBMUrbanCode Deploy6.1.1.5affected
IBMUrbanCode Deploy6.1.1.6affected
IBMUrbanCode Deploy6.1.1.7affected
IBMUrbanCode Deploy6.1.2affected
IBMUrbanCode Deploy6.1.1.8affected
IBMUrbanCode Deploy6.1.3affected
IBMUrbanCode Deploy6.1.3.1affected
IBMUrbanCode Deploy6.2affected
IBMUrbanCode Deploy6.2.0.1affected
IBMUrbanCode Deploy6.1.3.2affected
IBMUrbanCode Deploy6.2.0.2affected
IBMUrbanCode Deploy6.2.1affected
IBMUrbanCode Deploy6.2.1.1affected
IBMUrbanCode Deploy6.1.3.3affected
IBMUrbanCode Deploy6.2.1.2affected
IBMUrbanCode Deploy6.2.2affected
IBMUrbanCode Deploy6.2.2.1affected
IBMUrbanCode Deploy6.2.3.0affected
IBMUrbanCode Deploy6.2.3.1affected
IBMUrbanCode Deploy6.1.3.4affected
IBMUrbanCode Deploy6.1.3.5affected
IBMUrbanCode Deploy6.2.4affected
IBMUrbanCode Deploy6.1.3.6affected
IBMUrbanCode Deploy6.2.4.1affected
IBMUrbanCode Deploy6.2.4.2affected
IBMUrbanCode Deploy6.2.5affected
IBMUrbanCode Deploy6.2.5.1affected
IBMUrbanCode Deploy6.2.5.2affected
IBMUrbanCode Deploy6.2.6.0affected
IBMUrbanCode Deploy6.2.6.1affected

Weaknesses

  • File Manipulation

ADP Enrichment

CVE Program Container

Additional References

References