CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2024-45091: IBM UrbanCode Deploy information disclosure

6.2 CVSS

Description

IBM UrbanCode Deploy (UCD) 7.0 through 7.0.5.24, 7.1 through 7.1.2.10, and 7.2 through 7.2.3.13 stores potentially sensitive information in log files that could be read by a local user with access to HTTP request logs.

Classification

CVE ID: CVE-2024-45091

CVSS Base Severity: MEDIUM

CVSS Base Score: 6.2

Affected Products

Vendor: IBM

Product: UrbanCode Deploy

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 11.7% (scored less or equal to compared to others)

EPSS Date: 2025-02-19 (when was this score calculated)

References

https://www.ibm.com/support/pages/node/7177857

Timeline

2025-01-22 00:30:20 UTC
CVE

IBM UrbanCode Deploy information disclosure