VYPR
Unrated severityNVD Advisory· Published Feb 8, 2025· Updated Feb 22, 2025

IBM UrbanCode Deploy missing authentication

CVE-2024-54176

Description

IBM DevOps Deploy 8.0 through 8.0.1.4, 8.1 through 8.1.0.0 and IBM UrbanCode Deploy (UCD) 7.0 through 7.0.5.25, 7.1 through 7.1.2.21, 7.2 through 7.2.3.14 and 7.3 through 7.3.2 could allow an authenticated user to obtain sensitive information about other users on the system due to missing authorization for a function.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • Range: 8.0 through 8.0.1.4, 8.1 through 8.1.0.0
  • IBM/Urbancode Deployllm-fuzzy2 versions
    7.0 through 7.0.5.25, 7.1 through 7.1.2.21, 7.2 through 7.2.3.14, 7.3 through 7.3.2+ 1 more
    • (no CPE)range: 7.0 through 7.0.5.25, 7.1 through 7.1.2.21, 7.2 through 7.2.3.14, 7.3 through 7.3.2
    • (no CPE)range: 7.0
  • IBM/DevOps Deployv5
    Range: 8.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.