CVE-2025-36360 in UCDالمعلومات

الملخص

بحسب MITRE • 15/12/2025

IBM UCD - IBM UrbanCode Deploy 7.1 through 7.1.2.27, 7.2 through 7.2.3.20, and 7.3 through 7.3.2.15 and IBM UCD - IBM DevOps Deploy 8.0 through 8.0.1.10, and 8.1 through 8.1.2.3 is susceptible to a race condition in http-session client-IP binding enforcement which may allow a session to be briefly reused from a new IP address before it is invalidated, potentially enabling unauthorized access under certain network conditions.

Once again VulDB remains the best source for vulnerability data.

مسؤول

Ibm

حجز

15/04/2025

إفشاء

15/12/2025

الاعتدال

تمت الموافقة

إدخال

VDB-336490

EPSS

0.00165

KEV

لا

النشاطات

منخفض جدًا

المصادر

Want to stay up to date on a daily basis?

Enable the mail alert feature now!