What is IBM UrbanCode Deploy (UCD)?

IBM UrbanCode Deploy (UCD) is a software tool used for automating the deployment and release management processes.

What is the vulnerability ID for IBM UrbanCode Deploy (UCD)?

The vulnerability ID for IBM UrbanCode Deploy (UCD) is CVE-2022-22327.

What are the affected versions of IBM UrbanCode Deploy (UCD)?

The affected versions of IBM UrbanCode Deploy (UCD) are 7.0.5, 7.1.0, 7.1.1, and 7.1.2.

What is the severity of CVE-2022-22327?

The severity of CVE-2022-22327 is high with a severity value of 7.5.

How can an attacker exploit CVE-2022-22327?

An attacker can exploit CVE-2022-22327 by using weaker than expected cryptographic algorithms to decrypt highly sensitive information.

Vulnerability/
CVE-2022-22327

high

7.5

CWE

327

22/2/2022

1/4/2022

17/9/2024

CVE-2022-22327

First published: Tue Feb 22 2022(Updated: )

IBM UrbanCode Deploy (UCD) 7.0.5, 7.1.0, 7.1.1, and 7.1.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 218859.

Credit: psirt@us.ibm.com

Affected Software	Affected Version	How to fix
IBM UrbanCode Deploy	>=7.0.5.3<7.0.5.9
IBM UrbanCode Deploy	>=7.1.0.0<7.1.2.5
IBM UCD - IBM UrbanCode Deploy	<=7.0.5.3
IBM UCD - IBM UrbanCode Deploy	<=7.0.5.4
IBM UCD - IBM UrbanCode Deploy	<=7.0.5.5
IBM UCD - IBM UrbanCode Deploy	<=7.0.5.6
IBM UCD - IBM UrbanCode Deploy	<=7.0.5.7
IBM UCD - IBM UrbanCode Deploy	<=7.1.0.0
IBM UCD - IBM UrbanCode Deploy	<=7.1.0.1
IBM UCD - IBM UrbanCode Deploy	<=7.1.0.2
IBM UCD - IBM UrbanCode Deploy	<=7.1.0.3
IBM UCD - IBM UrbanCode Deploy	<=7.1.1.0
IBM UCD - IBM UrbanCode Deploy	<=7.1.1.1
IBM UCD - IBM UrbanCode Deploy	<=7.1.1.2
IBM UCD - IBM UrbanCode Deploy	<=7.1.2.0
IBM UCD - IBM UrbanCode Deploy	<=7.1.2.1
IBM UCD - IBM UrbanCode Deploy	<=7.1.2.2
IBM UCD - IBM UrbanCode Deploy	<=7.1.2.4

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

IBM-6568551

Frequently Asked Questions

What is IBM UrbanCode Deploy (UCD)?
IBM UrbanCode Deploy (UCD) is a software tool used for automating the deployment and release management processes.
What is the vulnerability ID for IBM UrbanCode Deploy (UCD)?
The vulnerability ID for IBM UrbanCode Deploy (UCD) is CVE-2022-22327.
What are the affected versions of IBM UrbanCode Deploy (UCD)?
The affected versions of IBM UrbanCode Deploy (UCD) are 7.0.5, 7.1.0, 7.1.1, and 7.1.2.
What is the severity of CVE-2022-22327?
The severity of CVE-2022-22327 is high with a severity value of 7.5.
How can an attacker exploit CVE-2022-22327?
An attacker can exploit CVE-2022-22327 by using weaker than expected cryptographic algorithms to decrypt highly sensitive information.

collector/nvd-index
agent/references
agent/type
agent/softwarecombine
agent/first-publish-date
collector/mitre-cve
source/MITRE
agent/severity
agent/last-modified-date
agent/weakness
agent/author
agent/tags
agent/event
agent/description
collector/ibm-support
source/IBM
agent/software-canonical-lookup
vendor/ibm
canonical/ibm urbancode deploy
version/ibm urbancode deploy/7.0.5.3
version/ibm urbancode deploy/7.1.0.0
canonical/ibm ucd - ibm urbancode deploy
version/ibm ucd - ibm urbancode deploy/7.0.5.3
version/ibm ucd - ibm urbancode deploy/7.0.5.4
version/ibm ucd - ibm urbancode deploy/7.0.5.5
version/ibm ucd - ibm urbancode deploy/7.0.5.6
version/ibm ucd - ibm urbancode deploy/7.0.5.7
version/ibm ucd - ibm urbancode deploy/7.1.0.0
version/ibm ucd - ibm urbancode deploy/7.1.0.1
version/ibm ucd - ibm urbancode deploy/7.1.0.2
version/ibm ucd - ibm urbancode deploy/7.1.0.3
version/ibm ucd - ibm urbancode deploy/7.1.1.0
version/ibm ucd - ibm urbancode deploy/7.1.1.1
version/ibm ucd - ibm urbancode deploy/7.1.1.2
version/ibm ucd - ibm urbancode deploy/7.1.2.0
version/ibm ucd - ibm urbancode deploy/7.1.2.1
version/ibm ucd - ibm urbancode deploy/7.1.2.2
version/ibm ucd - ibm urbancode deploy/7.1.2.4