Primary

Context

IBM UrbanCode Deploy and IBM DevOps Deploy Agent Relay Service Authentication Vulnerability

Vulnerability

Patched

A vulnerability exists in the Agent Relay service of IBM UrbanCode Deploy (UCD) versions 7.0 prior to 7.0.5.25, 7.1 prior to 7.1.2.21, 7.2 prior to 7.2.3.14, and 7.3 prior to 7.3.2.0, as well as IBM DevOps Deploy versions 8.0 prior to 8.0.1.4 and 8.1. This vulnerability could allow unauthorized access to other services or lead to the exposure of sensitive data due to inadequate authentication in the Agent Relay service.

Impact

Exploitation of this vulnerability could result in unauthorized access to services or the potential exposure of sensitive data.

Remediation

Users are advised to upgrade to version 7.0.5.26, 7.1.2.22, 7.2.3.15, 7.3.2.10, 8.0.1.5, 8.1.0.1 or later.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

2.5

exploitability

4.9

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

2.5

exploitability

4.9

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IBM UrbanCode Deploy and IBM DevOps Deploy Agent Relay Service Authentication Vulnerability

Vulnerability

Impact

Remediation

Affected Products

IBM UrbanCode Deploy

IBM DevOps Deploy

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating