Code injection

2019-07-0115:15:00

PRIOn knowledge base

www.prio-n.com

5.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

31.9%

JSON

IBM Robotic Process Automation with Automation Anywhere 11 could allow a remote authenticated attacker to conduct an LDAP injection. By using a specially crafted request, an attacker could exploit this vulnerability to make unauthorized queries or modify the LDAP content. IBM X-Force ID: 160761.

CPENameOperatorVersion
robotic_process_automation_with_automation_anywherege11.0.0.0
robotic_process_automation_with_automation_anywherelt11.0.0.5

CPE	Name	Operator	Version
	robotic_process_automation_with_automation_anywhere	ge	11.0.0.0
	robotic_process_automation_with_automation_anywhere	lt	11.0.0.5

References

www.ibm.com/support/docview.wss?uid=ibm10884826

exchange.xforce.ibmcloud.com/vulnerabilities/160761