CVE-2025-36162

CWE-4973 documents3 sources
Severity
4.3MEDIUM
EPSS
0.0%
top 91.06%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Devops DeployIBM Urbancode Deploy
Timeline
PublishedSep 2

Description

IBM DevOps Deploy / IBM UrbanCode Deploy (UCD) 8.1 before 8.1.2.2 could allow an authenticated user to obtain sensitive information about configuration on the system.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages2 packages

NVDibm/devops_deploy8.1.0.08.1.2.2
CVEListV5ibm/urbancode_deploy8.18.1.2.1

🔴Vulnerability Details

2
CVEList
IBM DevOps Deploy / IBM UrbanCode Deploy information disclosure2025-09-02
GHSA
GHSA-xpxw-r4r3-r7qf: IBM DevOps Deploy / IBM UrbanCode Deploy (UCD) 82025-09-02
CVE-2025-36162 (MEDIUM CVSS 4.3) | IBM DevOps Deploy / IBM UrbanCode D | cvebase.io