Information Disclosure: Remote Authenticated User Access to Keystore Secret Keys in IBM UrbanCode Deploy 6.1.0.2 before IF1

Information Disclosure: Remote Authenticated User Access to Keystore Secret Keys in IBM UrbanCode Deploy 6.1.0.2 before IF1

CVE-2014-6074 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

IBM UrbanCode Deploy 6.1.0.2 before IF1 allows remote authenticated users to read keystore secret keys via a direct request to a UI page.

Learn more about our User Device Pen Test.