← back
CVE-2016-0373

CVE-2016-0373

CVSS 3.1 LOWEPSS 0.8%
Vexday Risk Score
8Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 3.1EPSS 0.8%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
30 Aug 2018Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
IBM UrbanCode Deploy 6.0 through 6.2.2.1 could allow an authenticated user to read sensitive information due to UCD REST endpoints not properly authorizing users when determining who can read data. IBM X-Force ID: 112119.
CVSS:3.0/A:N/AC:H/AV:N/C:L/I:N/PR:L/S:U/UI:N/E:U/RC:C/RL:O
Affected products
IBM · UrbanCode Deploy