CVE-2023-22593 IBM Robotic Process Automation for Cloud Pak security configuration

🗓️ 27 Jun 2023 18:00:38Reported by ibmType

IBM RPA for Cloud Pak security misconfiguration CVE-2023-22593

Reporter	Title	Published	Views	Family All 11
BDU FSTEC	The vulnerability of the IBM Robotic Process Automation software, related to security configuration errors, allows attackers to exploit their privileges.	26 Sep 202300:00	–	bdu_fstec
IBM Security Bulletins	Security Bulletin: IBM Robotic Process Automation for Cloud Pak is vulnerable to security misconfiguration which may result in elevated privileges (CVE-2023-22593).	21 Jun 202322:07	–	ibm
CNNVD	IBM Robotic Process Automation 安全漏洞	27 Jun 202300:00	–	cnnvd
CVE	CVE-2023-22593	27 Jun 202318:00	–	cve
EUVD	EUVD-2023-26730	3 Oct 202520:07	–	euvd
NVD	CVE-2023-22593	27 Jun 202319:15	–	nvd
OSV	CVE-2023-22593	27 Jun 202319:15	–	osv
Prion	Design/Logic Flaw	27 Jun 202319:15	–	prion
Positive Technologies	PT-2023-5442 · Ibm · Ibm Robotic Process Automation For Cloud Pak	27 Jun 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-22593	23 May 202505:52	–	redhatcve

[
  {
    "defaultStatus": "unaffected",
    "product": "Robotic Process Automation for Cloud Pak",
    "vendor": "IBM",
    "versions": [
      {
        "lessThanOrEqual": "21.0.7.3",
        "status": "affected",
        "version": "21.0.1",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "23.0.3",
        "status": "affected",
        "version": "23.0.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/7006001
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/244074

27 Jun 2023 18:00Current

7.5High risk

Vulners AI Score7.5

CVSS 3.14

EPSS0.00156