July 1, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Multiple WordPress Plugins Vulnerabilities
February 10, 2025Multiple Microsoft Products Vulnerabilities
February 10, 2025Multiple WordPress Plugins Vulnerabilities
February 10, 2025Multiple Microsoft Products Vulnerabilities
February 10, 2025
Severity
Medium
Analysis Summary
CVE-2024-54176 CVSS:4.3
IBM DevOps Deploy 8.0 through 8.0.1.4, 8.1 through 8.1.0.0 and IBM UrbanCode Deploy (UCD) 7.0 through 7.0.5.25, 7.1 through 7.1.2.21, 7.2 through 7.2.3.14 and 7.3 through 7.3.2 could allow an authenticated user to obtain sensitive information about other users on the system due to missing authorization for a function.
CVE-2025-0158 CVSS:5.5
IBM EntireX 11.1 could allow a local user to cause a denial of service due to an unhandled error and fault isolation.
Impact
- Denial of Service
- Gain Access
Indicators of Compromise
CVE
CVE-2024-54176
CVE-2025-0158
Affected Vendors
- IBM
Affected Products
- IBM UrbanCode Deploy - 7.0 - 7.1 - 7.2 - 7.3
- IBM DevOps Deploy - 8.0 - 8.1
- IBM EntireX - 11.1
Remediation
Refer to the appropriate IBM Security Advisory for the patch, upgrade, or suggested workaround information.