Vulnerabilities > CVE-2023-42012 - Unspecified vulnerability in IBM Urbancode Deploy

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

ibm

NVD

Published: 2023-12-20

Updated: 2023-12-27

Summary

An IBM UrbanCode Deploy Agent 7.2 through 7.2.3.7, and 7.3 through 7.3.2.2 installed as a Windows service in a non-standard location could be subject to a denial of service attack by local accounts. IBM X-Force ID: 265509.

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM Urbancode Deploy 7.2.0.0 IBM Urbancode Deploy 7.2.0.0.1109832 IBM Urbancode Deploy 7.2.0.1.1114184 IBM Urbancode Deploy 7.2.0.2.1116435 IBM Urbancode Deploy 7.2.1.0.1123293 IBM Urbancode Deploy 7.2.2.1 IBM Urbancode Deploy 7.2.3.1 IBM Urbancode Deploy 7.2.3.4 IBM Urbancode Deploy 7.2.3.7 IBM Urbancode Deploy 7.3.0.0 IBM Urbancode Deploy 7.3.1.0 IBM Urbancode Deploy 7.3.2.2	12

References

https://www.ibm.com/support/pages/node/7096548
https://exchange.xforce.ibmcloud.com/vulnerabilities/265509