← Back

CVE-2022-43877

nvd nist
Published: May 6, 2023Modified: Jan 29, 2025

JSON object

Loading...
5.5
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Exploitability: 1.8 / Impact: 3.6
Source: NVD (Secondary)

Description

IBM UrbanCode Deploy (UCD) versions up to 7.3.0.1 could disclose sensitive password information during a manual edit of the agentrelay.properties file. IBM X-Force ID: 240148.

Affected (5)

Ibm
1 product
Urbancode Deploy
Configuration A
5 vulnerable
Vulnerable SoftwareAffected Versions
Ibm
Urbancode Deploy
From 6.2.0.0 to 6.2.7.20
Urbancode Deploy
From 7.0.0.0 to 7.0.5.15
Urbancode Deploy
From 7.1.0.0 to 7.1.2.11
Urbancode Deploy
From 7.2.0.0 to 7.2.3.4
Urbancode Deploy
From 7.3.0.0 to 7.3.1.0

Related CWEs

CWE-922
Insecure Storage of Sensitive Information
The product stores sensitive information without properly limiting read or write access by unauthorized actors.

References (4)

Source: psirt@us.ibm.com
VDB EntryVendor Advisory
Source: psirt@us.ibm.com
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
VDB EntryVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory

Timeline

No history available yet.