CVE-2022-35716
5.3
CVSS:3.0/PR:L/UI:N/I:N/AV:N/C:H/AC:H/S:U/A:N/RC:C/RL:O/E:U
Summary
IBM UrbanCode Deploy (UCD) 6.2.0.0 through 6.2.7.16, 7.0.0.0 through 7.0.5.11, 7.1.0.0 through 7.1.2.7, and 7.2.0.0 through 7.2.3.0 could allow an authenticated user to obtain sensitive information in some instances due to improper security checking. IBM X-Force ID: 231360.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| IBM | UrbanCode Deploy | 7.0.0.0 | affected |
| IBM | UrbanCode Deploy | 7.1.0.0 | affected |
| IBM | UrbanCode Deploy | 7.2.0.0 | affected |
| IBM | UrbanCode Deploy | 6.2.0.0 | affected |
| IBM | UrbanCode Deploy | 6.2.7.16 | affected |
| IBM | UrbanCode Deploy | 7.0.5.11 | affected |
| IBM | UrbanCode Deploy | 7.1.2.7 | affected |
| IBM | UrbanCode Deploy | 7.2.3.0 | affected |
Weaknesses
- Obtain Information
ADP Enrichment
CVE Program Container
Additional References
- https://www.ibm.com/support/pages/node/6608584
- https://exchange.xforce.ibmcloud.com/vulnerabilities/231360
References
- https://www.ibm.com/support/pages/node/6608584
- https://exchange.xforce.ibmcloud.com/vulnerabilities/231360
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.