CVE-2016-8938

Name of the Vulnerable Software and Affected Versions IBM UrbanCode Deploy (affected versions not specified)

Description The issue is related to insufficient access control in IBM UrbanCode Deploy, which could allow a remote attacker to execute arbitrary code on machines with the UCD agent installed. This can be achieved by uploading a specially crafted file that replaces code on the server, potentially affecting customer production applications hosted on UCD agent machines.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.