CVE-2016-0320

IBM UrbanCode Deploy could allow an authenticated user to modify Ucd objects due to multiple REST endpoints not properly authorizing users editing UCD objects. This could affect the behavior of legitimately triggered processes.

Published: Feb 1, 2017
Updated: Nov 9, 2025
CVE: CVE-2016-0320
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:N/I:P/A:N

CWEs:

CWE-284

OWASP TOP 10:

A5 - Broken Access Control

Affected Software
References

Software	From	Fixed in
ibm / urbancode_deploy	6.1.1.2	6.1.1.2.x
ibm / urbancode_deploy	6.2.0.0	6.2.0.0.x
ibm / urbancode_deploy	6.0.1.8	6.0.1.8.x
ibm / urbancode_deploy	6.2.0.2	6.2.0.2.x
ibm / urbancode_deploy	6.1.0.4	6.1.0.4.x
ibm / urbancode_deploy	6.0.1.9	6.0.1.9.x
ibm / urbancode_deploy	6.2.2	6.2.2.x
ibm / urbancode_deploy	6.0.1.1	6.0.1.1.x
ibm / urbancode_deploy	6.0.1.11	6.0.1.11.x
ibm / urbancode_deploy	6.0.1.7	6.0.1.7.x
ibm / urbancode_deploy	6.0.1.3	6.0.1.3.x
ibm / urbancode_deploy	6.0.1.6	6.0.1.6.x
ibm / urbancode_deploy	6.0.1	6.0.1.x
ibm / urbancode_deploy	6.0.1.14	6.0.1.14.x
ibm / urbancode_deploy	6.1.1.1	6.1.1.1.x
ibm / urbancode_deploy	6.1.3.1	6.1.3.1.x
ibm / urbancode_deploy	6.2.2.1	6.2.2.1.x
ibm / urbancode_deploy	6.1.1.5	6.1.1.5.x
ibm / urbancode_deploy	6.1.1	6.1.1.x
ibm / urbancode_deploy	6.1.3	6.1.3.x
ibm / urbancode_deploy	6.2.1.1	6.2.1.1.x
ibm / urbancode_deploy	6.0.1.4	6.0.1.4.x
ibm / urbancode_deploy	6.1.3.3	6.1.3.3.x
ibm / urbancode_deploy	6.1.1.8	6.1.1.8.x
ibm / urbancode_deploy	6.1.1.6	6.1.1.6.x
ibm / urbancode_deploy	6.2.0.1	6.2.0.1.x
ibm / urbancode_deploy	6.0.1.10	6.0.1.10.x
ibm / urbancode_deploy	6.1.0.2	6.1.0.2.x
ibm / urbancode_deploy	6.1.0.1	6.1.0.1.x
ibm / urbancode_deploy	6.0.1.13	6.0.1.13.x
ibm / urbancode_deploy	6.2.1	6.2.1.x
ibm / urbancode_deploy	6.1.1.7	6.1.1.7.x
ibm / urbancode_deploy	6.1.1.3	6.1.1.3.x
ibm / urbancode_deploy	6.0	6.0.x
ibm / urbancode_deploy	6.1.3.2	6.1.3.2.x
ibm / urbancode_deploy	6.0.1.5	6.0.1.5.x
ibm / urbancode_deploy	6.1.0.3	6.1.0.3.x
ibm / urbancode_deploy	6.0.1.2	6.0.1.2.x
ibm / urbancode_deploy	6.1.2	6.1.2.x
ibm / urbancode_deploy	6.1.1.4	6.1.1.4.x
ibm / urbancode_deploy	6.0.1.12	6.0.1.12.x
ibm / urbancode_deploy	6.1	6.1.x

Vulnerability Database

314,373

CVE-2016-0320

Deep Security Visibility Without the Complexity