Vulnerabilities > IBM > Urbancode Deploy > 6.2.1

DATE CVE VULNERABILITY TITLE RISK
2016-07-01 CVE-2016-0364 Information Exposure vulnerability in IBM Urbancode Deploy
IBM UrbanCode Deploy 6.0.x before 6.0.1.13, 6.1.x before 6.1.3.3, and 6.2.x before 6.2.1.1 does not properly implement a logging-obfuscation feature for secure properties, which allows remote authenticated users to obtain sensitive information via vectors involving special characters.
network
low complexity
ibm CWE-200
4.0
4.0
2016-06-29 CVE-2016-0267 Information Exposure vulnerability in IBM Urbancode Deploy
IBM UrbanCode Deploy 6.0.x before 6.0.1.13, 6.1.x before 6.1.3.3, and 6.2.x before 6.2.1.1 allows remote authenticated users to obtain sensitive cleartext secure-property information via (1) the server UI or (2) a database request.
network
low complexity
ibm CWE-200
4.0
4.0