GHSA-wvfh-rj9m-fpc6

Опубликовано: 27 мар. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 5.5

Описание

IBM UrbanCode Deploy (UCD) through 7.1.2.21, 7.2 through 7.2.3.14, and 7.3 through 7.3.2.0 / IBM DevOps Deploy 8.0 through 8.0.1.4 and 8.1 through 8.1

stores potentially sensitive authentication token information in log files that could be read by a local user.

IBM UrbanCode Deploy (UCD) through 7.1.2.21, 7.2 through 7.2.3.14, and 7.3 through 7.3.2.0 / IBM DevOps Deploy 8.0 through 8.0.1.4 and 8.1 through 8.1

stores potentially sensitive authentication token information in log files that could be read by a local user.

Ссылки

EPSS

Процентиль: 11%

0.00037

Низкий

5.5 Medium

CVSS3

CVE ID

CVE-2025-1998

Дефекты

CWE-532

Связанные уязвимости

CVE-2025-1998

CVSS3: 5.5

nvd

11 месяцев назад

IBM UrbanCode Deploy (UCD) through 7.1.2.21, 7.2 through 7.2.3.14, and 7.3 through 7.3.2.0 / IBM DevOps Deploy 8.0 through 8.0.1.4 and 8.1 through 8.1 stores potentially sensitive authentication token information in log files that could be read by a local user.

EPSS

Процентиль: 11%

0.00037

Низкий

5.5 Medium

CVSS3

CVE ID

CVE-2025-1998

Дефекты

CWE-532