CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:N
AI Score
Confidence
High
EPSS
Percentile
9.0%
BM DevOps Deploy / IBM UrbanCode Deploy (UCD) could be vulnerable to incomplete revocation of permissions when deleting a custom security resource type. When deleting a custom security type, associated permissions of objects using that type may not be fully revoked. This could lead to incorrect reporting of permission configuration and unexpected privileges being retained.
CVEID:CVE-2024-22334
**DESCRIPTION:**IBM UrbanCode Deploy (UCD) could be vulnerable to incomplete revocation of permissions when deleting a custom security resource type. When deleting a custom security type, associated permissions of objects using that type may not be fully revoked. This could lead to incorrect reporting of permission configuration and unexpected privileges being retained.
CVSS Base score: 4.4
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/279974 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:N)
Affected Product(s) | Version(s) |
---|---|
UCD - IBM UrbanCode Deploy | 7.0 - 7.0.5.20 |
UCD - IBM UrbanCode Deploy | 7.1 - 7.1.2.16 |
UCD - IBM UrbanCode Deploy | 7.2 - 7.2.3.9 |
UCD - IBM UrbanCode Deploy | 7.3 - 7.3.2.4 |
UCD - IBM DevOps Deploy | 8.0 - 8.0.0.1 |
IBM strongly suggests the following:
Upgrade affected versions to any of 7.0.5.21, 7.1.2.17, 7.2.3.10, 7.3.2.5, or 8.0.1.0 or later
None
Vendor | Product | Version | CPE |
---|---|---|---|
ibm | urbancode_deploy | 8.0.1.0 | cpe:2.3:a:ibm:urbancode_deploy:8.0.1.0:*:*:*:*:*:*:* |
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:N
AI Score
Confidence
High
EPSS
Percentile
9.0%