Vulnerability Details CVE-2016-0373
IBM UrbanCode Deploy 6.0 through 6.2.2.1 could allow an authenticated user to read sensitive information due to UCD REST endpoints not properly authorizing users when determining who can read data. IBM X-Force ID: 112119.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 29.0%
CVSS Severity
CVSS v3 Score 3.1
CVSS v2 Score 4.0
References
Products affected by CVE-2016-0373
-
cpe:2.3:a:ibm:urbancode_deploy:6.0
-
cpe:2.3:a:ibm:urbancode_deploy:6.0.1.0
-
cpe:2.3:a:ibm:urbancode_deploy:6.0.1.1
-
cpe:2.3:a:ibm:urbancode_deploy:6.0.1.10
-
cpe:2.3:a:ibm:urbancode_deploy:6.0.1.11
-
cpe:2.3:a:ibm:urbancode_deploy:6.0.1.12
-
cpe:2.3:a:ibm:urbancode_deploy:6.0.1.13
-
cpe:2.3:a:ibm:urbancode_deploy:6.0.1.2
-
cpe:2.3:a:ibm:urbancode_deploy:6.0.1.3
-
cpe:2.3:a:ibm:urbancode_deploy:6.0.1.4
-
cpe:2.3:a:ibm:urbancode_deploy:6.0.1.5
-
cpe:2.3:a:ibm:urbancode_deploy:6.0.1.6
-
cpe:2.3:a:ibm:urbancode_deploy:6.0.1.7
-
cpe:2.3:a:ibm:urbancode_deploy:6.0.1.8
-
cpe:2.3:a:ibm:urbancode_deploy:6.0.1.9
-
cpe:2.3:a:ibm:urbancode_deploy:6.1
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.0.1
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.0.2
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.0.3
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.0.4
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.0.7
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.1
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.1.0
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.1.1
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.1.2
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.1.3
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.1.4
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.1.5
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.1.6
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.1.7
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.1.8
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.2
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.3
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.3.1
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.3.2
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.3.3
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.3.4
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.3.5
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.3.6
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.3.7
-
cpe:2.3:a:ibm:urbancode_deploy:6.1.3.8
-
cpe:2.3:a:ibm:urbancode_deploy:6.2
-
cpe:2.3:a:ibm:urbancode_deploy:6.2.0.0
-
cpe:2.3:a:ibm:urbancode_deploy:6.2.0.1
-
cpe:2.3:a:ibm:urbancode_deploy:6.2.0.2
-
cpe:2.3:a:ibm:urbancode_deploy:6.2.0.201
-
cpe:2.3:a:ibm:urbancode_deploy:6.2.1
-
cpe:2.3:a:ibm:urbancode_deploy:6.2.1.0
-
cpe:2.3:a:ibm:urbancode_deploy:6.2.1.1
-
cpe:2.3:a:ibm:urbancode_deploy:6.2.1.2
-
cpe:2.3:a:ibm:urbancode_deploy:6.2.2
-
cpe:2.3:a:ibm:urbancode_deploy:6.2.2.0
-
cpe:2.3:a:ibm:urbancode_deploy:6.2.2.1