What is the severity of CVE-2016-6068?

CVE-2016-6068 is rated as a medium severity vulnerability.

Who is affected by CVE-2016-6068?

CVE-2016-6068 affects IBM UrbanCode Deploy versions 6.0 to 6.2.2.1.

How do I fix CVE-2016-6068?

To fix CVE-2016-6068, upgrade to the latest version of IBM UrbanCode Deploy.

What type of vulnerability is CVE-2016-6068?

CVE-2016-6068 is a security vulnerability that allows authenticated users to access sensitive role properties.

Is there a workaround for CVE-2016-6068?

There is no official workaround available for CVE-2016-6068; the only solution is to upgrade the software.

Vulnerability/
CVE-2016-6068

high

7.5

CWE

200

1/2/2017

6/8/2024

CVE-2016-6068: Infoleak

First published: Wed Feb 01 2017(Updated: )

IBM UrbanCode Deploy could allow an authenticated user with access to the REST endpoints to access API and CLI getResource secured role properties.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
IBM UrbanCode Deploy	=6.0
IBM UrbanCode Deploy	=6.0.1
IBM UrbanCode Deploy	=6.0.1.1
IBM UrbanCode Deploy	=6.0.1.2
IBM UrbanCode Deploy	=6.0.1.3
IBM UrbanCode Deploy	=6.0.1.4
IBM UrbanCode Deploy	=6.0.1.5
IBM UrbanCode Deploy	=6.0.1.6
IBM UrbanCode Deploy	=6.0.1.7
IBM UrbanCode Deploy	=6.0.1.8
IBM UrbanCode Deploy	=6.0.1.9
IBM UrbanCode Deploy	=6.0.1.10
IBM UrbanCode Deploy	=6.0.1.11
IBM UrbanCode Deploy	=6.0.1.12
IBM UrbanCode Deploy	=6.0.1.13
IBM UrbanCode Deploy	=6.0.1.14
IBM UrbanCode Deploy	=6.1
IBM UrbanCode Deploy	=6.1.0.1
IBM UrbanCode Deploy	=6.1.0.2
IBM UrbanCode Deploy	=6.1.0.3
IBM UrbanCode Deploy	=6.1.0.4
IBM UrbanCode Deploy	=6.1.1
IBM UrbanCode Deploy	=6.1.1.1
IBM UrbanCode Deploy	=6.1.1.2
IBM UrbanCode Deploy	=6.1.1.3
IBM UrbanCode Deploy	=6.1.1.4
IBM UrbanCode Deploy	=6.1.1.5
IBM UrbanCode Deploy	=6.1.1.6
IBM UrbanCode Deploy	=6.1.1.7
IBM UrbanCode Deploy	=6.1.1.8
IBM UrbanCode Deploy	=6.1.2
IBM UrbanCode Deploy	=6.1.3
IBM UrbanCode Deploy	=6.1.3.1
IBM UrbanCode Deploy	=6.1.3.2
IBM UrbanCode Deploy	=6.1.3.3
IBM UrbanCode Deploy	=6.2.0.0
IBM UrbanCode Deploy	=6.2.0.1
IBM UrbanCode Deploy	=6.2.0.2
IBM UrbanCode Deploy	=6.2.1
IBM UrbanCode Deploy	=6.2.1.1
IBM UrbanCode Deploy	=6.2.2
IBM UrbanCode Deploy	=6.2.2.1

Remedy

http://www.ibm.com/support/docview.wss?uid=swg2C1000229

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2016-6068?
CVE-2016-6068 is rated as a medium severity vulnerability.
Who is affected by CVE-2016-6068?
CVE-2016-6068 affects IBM UrbanCode Deploy versions 6.0 to 6.2.2.1.
How do I fix CVE-2016-6068?
To fix CVE-2016-6068, upgrade to the latest version of IBM UrbanCode Deploy.
What type of vulnerability is CVE-2016-6068?
CVE-2016-6068 is a security vulnerability that allows authenticated users to access sensitive role properties.
Is there a workaround for CVE-2016-6068?
There is no official workaround available for CVE-2016-6068; the only solution is to upgrade the software.

collector/nvd-index
agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/weakness
agent/severity
agent/last-modified-date
agent/remedy
agent/description
agent/tags
agent/first-publish-date
agent/event
agent/source
vendor/ibm
canonical/ibm urbancode deploy
version/ibm urbancode deploy/6.0
version/ibm urbancode deploy/6.0.1
version/ibm urbancode deploy/6.0.1.1
version/ibm urbancode deploy/6.0.1.2
version/ibm urbancode deploy/6.0.1.3
version/ibm urbancode deploy/6.0.1.4
version/ibm urbancode deploy/6.0.1.5
version/ibm urbancode deploy/6.0.1.6
version/ibm urbancode deploy/6.0.1.7
version/ibm urbancode deploy/6.0.1.8
version/ibm urbancode deploy/6.0.1.9
version/ibm urbancode deploy/6.0.1.10
version/ibm urbancode deploy/6.0.1.11
version/ibm urbancode deploy/6.0.1.12
version/ibm urbancode deploy/6.0.1.13
version/ibm urbancode deploy/6.0.1.14
version/ibm urbancode deploy/6.1
version/ibm urbancode deploy/6.1.0.1
version/ibm urbancode deploy/6.1.0.2
version/ibm urbancode deploy/6.1.0.3
version/ibm urbancode deploy/6.1.0.4
version/ibm urbancode deploy/6.1.1
version/ibm urbancode deploy/6.1.1.1
version/ibm urbancode deploy/6.1.1.2
version/ibm urbancode deploy/6.1.1.3
version/ibm urbancode deploy/6.1.1.4
version/ibm urbancode deploy/6.1.1.5
version/ibm urbancode deploy/6.1.1.6
version/ibm urbancode deploy/6.1.1.7
version/ibm urbancode deploy/6.1.1.8
version/ibm urbancode deploy/6.1.2
version/ibm urbancode deploy/6.1.3
version/ibm urbancode deploy/6.1.3.1
version/ibm urbancode deploy/6.1.3.2
version/ibm urbancode deploy/6.1.3.3
version/ibm urbancode deploy/6.2.0.0
version/ibm urbancode deploy/6.2.0.1
version/ibm urbancode deploy/6.2.0.2
version/ibm urbancode deploy/6.2.1
version/ibm urbancode deploy/6.2.1.1
version/ibm urbancode deploy/6.2.2
version/ibm urbancode deploy/6.2.2.1

CVE-2016-6068: Infoleak

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2016-6068?

Who is affected by CVE-2016-6068?

How do I fix CVE-2016-6068?

What type of vulnerability is CVE-2016-6068?

Is there a workaround for CVE-2016-6068?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2016-6068?

Who is affected by CVE-2016-6068?

How do I fix CVE-2016-6068?

What type of vulnerability is CVE-2016-6068?

Is there a workaround for CVE-2016-6068?