CVE-2020-4944

Summary

IBM UrbanCode Deploy (UCD) 7.0.3.0, 7.0.4.0, 7.0.5.3, 7.0.5.4, 7.1.0.0, 7.1.1.0, 7.1.1.1, and 7.1.1.2, stores keystore passwords in plain text after a manual edit, which can be read by a local user. IBM X-Force ID: 191944.

Affected Software

VendorProductVersion RangeStatus
IBMUrbanCode Deploy7.0.3.0affected
IBMUrbanCode Deploy7.0.4.0affected
IBMUrbanCode Deploy7.1.0.0affected
IBMUrbanCode Deploy7.0.5.3affected
IBMUrbanCode Deploy7.1.1.0affected
IBMUrbanCode Deploy7.0.5.4affected
IBMUrbanCode Deploy7.1.1.1affected
IBMUrbanCode Deploy7.1.1.2affected

Weaknesses

  • Obtain Information

ADP Enrichment

CVE Program Container

Additional References

References