CVE-2014-6074IBM Urbancode Deploy vulnerability

CWE-3103 documents3 sources
Severity
4.0MEDIUMNVD
EPSS
0.2%
top 60.49%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Urbancode Deploy
Timeline
PublishedSep 10
Latest updateMay 17

Description

IBM UrbanCode Deploy 6.1.0.2 before IF1 allows remote authenticated users to read keystore secret keys via a direct request to a UI page.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 8.0 | Impact: 2.9

Affected Packages1 packages

Patches

Patch: www-01.ibm.comPatch: www-01.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-hp85-86cw-p7ch: IBM UrbanCode Deploy 62022-05-17
CVEList
CVE-2014-6074: IBM UrbanCode Deploy 62014-09-10
CVE-2014-6074 — IBM Urbancode Deploy vulnerability | cvebase