CVE-2016-0267Sensitive Information Exposure in IBM Urbancode Deploy

CWE-200Sensitive Information Exposure3 documents3 sources
Severity
7.7HIGHNVD
EPSS
0.2%
top 57.68%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Urbancode Deploy
Timeline
PublishedJun 29
Latest updateMay 17

Description

IBM UrbanCode Deploy 6.0.x before 6.0.1.13, 6.1.x before 6.1.3.3, and 6.2.x before 6.2.1.1 allows remote authenticated users to obtain sensitive cleartext secure-property information via (1) the server UI or (2) a database request.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:NExploitability: 3.1 | Impact: 4.0

Affected Packages1 packages

NVDibm/urbancode_deploy36 versions+35

🔴Vulnerability Details

2
GHSA
GHSA-p8p8-358v-xxjf: IBM UrbanCode Deploy 62022-05-17
CVEList
CVE-2016-0267: IBM UrbanCode Deploy 62016-06-29
CVE-2016-0267 — Sensitive Information Exposure in IBM | cvebase