Sensitive Information Exposure in IBM UrbanCode Deploy
CVE-2024-45091
5.5MEDIUM
What is CVE-2024-45091?
IBM UrbanCode Deploy versions 7.0 through 7.0.5.24, 7.1 through 7.1.2.10, and 7.2 through 7.2.3.13 are subject to a vulnerability where potentially sensitive information is stored in HTTP request log files. This exposure allows local users with access to these log files to read confidential information, potentially leading to further security risks. It is essential for users of the affected versions to implement mitigations and monitor access to log files to protect sensitive data.
Affected Version(s)
UrbanCode Deploy 7.0 <= 7.0.5.24
UrbanCode Deploy 7.1 <= 7.1.2.10
UrbanCode Deploy 7.2 <= 7.2.3.13