IBM DevOps Deploy is susceptible to a Cleartext Transmission of...

5.9 / 10

MEDIUM

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Description

IBM UCD - IBM DevOps Deploy 8.1 through 8.1.2.3 Deploy transmits data in clear text that could allow an attacker to obtain sensitive information using man in the middle techniques.

Basic Information

ID CVE-2025-13489

Source ibm

Published Dec 15, 2025 at 19:51

Modified Dec 15, 2025 at 20:19

Affected Product

Vendor IBM

Product UCD - IBM DevOps Deploy

Version 8.1

Affected Versions IBM UCD - IBM DevOps Deploy 8.1

CWE Classification

CWE-319

References

www.ibm.com /support/pages/node/7254662

{
    "lastseen": "",
    "description": "IBM UCD - IBM DevOps Deploy 8.1 through 8.1.2.3 Deploy transmits data in clear text that could allow an attacker to obtain sensitive information using man in the middle techniques.",
    "published": "2025-12-15T19:51:13.534Z",
    "modified": "2025-12-15T20:19:59.521Z",
    "type": "cve",
    "title": "IBM DevOps Deploy is susceptible to a Cleartext Transmission of Sensitive Information",
    "source": "ibm",
    "references": "https://www.ibm.com/support/pages/node/7254662",
    "id": "CVE-2025-13489",
    "bulletinFamily": "",
    "cwe": [
        "CWE-319"
    ],
    "cvelist": null,
    "sourceData": "IBM UCD - IBM DevOps Deploy 8.1",
    "sourceHref": "",
    "cvss": {
        "score": 5.9,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "UCD - IBM DevOps Deploy",
    "version": "8.1",
    "vendor": "IBM",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

IBM DevOps Deploy is susceptible to a Cleartext Transmission of Sensitive Information_CVE-2025-13489