CVE-2021-29711

4.9MEDIUM

Key Information:

Vendor: IBM
Status: Urbancode Deploy
Vendor: CVE Published:; 8 July 2021

Summary

IBM UrbanCode Deploy (UCD) 6.2.7.3, 6.2.7.4, 6.2.7.8 , 6.2.7.9, 7.0.3.0, 7.0.4.0, 7.0.5.4, 7.1.0.0, 7.1.1.0, 7.1.1.1, and 7.1.1.2 could allow an authenticated user with certain permissions to initiate an agent upgrade through the CLI interface. IBM X-Force ID: 200965.

Affected Version(s)

UrbanCode Deploy 6.2.7.3

UrbanCode Deploy 7.0.3.0

UrbanCode Deploy 7.0.4.0

References

https://www.ibm.com/support/pages/node/6469941

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/200965

vdb-entryx_refsource_XF

CVSS V3.1

Score:

4.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 8, 2021
Vulnerability Reserved
Mar 31, 2021