Lucene search
+L

786 matches found

OSV
OSV
added 2018/11/02 3:29 p.m.4 views

CVE-2018-1877

IBM Robotic Process Automation with Automation Anywhere 11 could store highly sensitive information in the form of unencrypted passwords that would be available to a local user. IBM X-Force ID: 151713...

7.8CVSS5.8AI score0.00245EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/11/02 3:0 p.m.22 views

CVE-2018-1877

IBM Robotic Process Automation with Automation Anywhere 11 could store highly sensitive information in the form of unencrypted passwords that would be available to a local user. IBM X-Force ID: 151713...

6.2CVSS7AI score0.00245EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/11/02 3:0 p.m.19 views

CVE-2018-1878

IBM Robotic Process Automation with Automation Anywhere 11 could disclose sensitive information in a web request that could aid in future attacks against the system. IBM X-Force ID: 151714...

5.3CVSS4.9AI score0.01301EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/11/02 3:0 p.m.19 views

CVE-2018-1552

IBM Robotic Process Automation with Automation Anywhere 10.0 and 11.0 allows a remote attacker to execute arbitrary code on the system, caused by a missing restriction in which file types can be uploaded to the control room. By uploading a malicious file and tricking a victim to run it, an attack...

5.5CVSS8.6AI score0.02908EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2018/10/30 6:35 p.m.16 views

Security Bulletin: Passwords printed to log files in IBM Robotic Process Automation with Automation Anywhere (CVE-2018-1876)

Summary IBM Robotic Process Automation with Automation Anywhere log files may contain plain text password in some cases Vulnerability Details CVEID: CVE-2018-1876 DESCRIPTION: IBM Robotic Process Automation could under certain cases, display the password in a Control Room log file after...

6.2CVSS1.7AI score0.00369EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/10/30 6:35 p.m.26 views

Security Bulletin: Remote Code Execution vulnerability in IBM Robotic Process Automation with Automation Anywhere (CVE-2018-1552)

Summary IBM Robotic Process Automation with Automation Anywhere is vulnerable to a remote code execution vulnerability Vulnerability Details CVEID: CVE-2018-1552 DESCRIPTION: IBM Robotic Process Automation with Automation Anywhere allows a remote attacker to execute arbitrary code on the system,...

9.3CVSS2AI score0.02908EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/10/30 6:30 p.m.13 views

Security Bulletin: Passwords are unencrypted locally in IBM Robotic Process Automation with Automation Anywhere (CVE-2018-1877)

Summary IBM Robotic Process Automation could store highly sensitive information in the form of unencrypted passwords that would be available to a local user. Vulnerability Details CVEID: CVE-2018-1877 DESCRIPTION: IBM Robotic Process Automation could store highly sensitive information in the form...

7.8CVSS1.1AI score0.00245EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2018/10/10 12:0 a.m.5 views

IBM Robotic Process Automation with Automation Anywhere Enterprise Cross-Site Scripting Vulnerability (CNVD-2018-20658)

IBM Robotic Process Automation with Automation Anywhere Enterprise is a suite of process automation solutions developed by IBM USA and Automation Anywhere. A cross-site scripting vulnerability exists in IBM Robotic Process Automation with Automation Anywhere Enterprise version 10. A remote attack...

6.1CVSS6.2AI score0.00894EPSS
Exploits0References1
NVD
NVD
added 2018/10/05 1:29 p.m.20 views

CVE-2018-1812

IBM Robotic Process Automation with Automation Anywhere Enterprise 10 is vulnerable to persistent cross-site scripting, caused by missing escaping of a database field. An attacker that has access to the Control Room database could exploit this vulnerability to execute script in a victim's web...

5.4CVSS5.4AI score0.0066EPSS
Exploits0References2
OSV
OSV
added 2018/10/05 1:29 p.m.5 views

CVE-2018-1812

IBM Robotic Process Automation with Automation Anywhere Enterprise 10 is vulnerable to persistent cross-site scripting, caused by missing escaping of a database field. An attacker that has access to the Control Room database could exploit this vulnerability to execute script in a victim's web...

5.4CVSS5.8AI score0.0066EPSS
Exploits0References2
OSV
OSV
added 2018/10/05 1:29 p.m.4 views

CVE-2018-1795

IBM Robotic Process Automation with Automation Anywhere Enterprise 10 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted...

6.1CVSS5.4AI score0.00894EPSS
Exploits0References2
Prion
Prion
added 2018/10/05 1:29 p.m.22 views

Cross site scripting

IBM Robotic Process Automation with Automation Anywhere Enterprise 10 is vulnerable to persistent cross-site scripting, caused by missing escaping of a database field. An attacker that has access to the Control Room database could exploit this vulnerability to execute script in a victim's web...

3.5CVSS5.3AI score0.0066EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2018/10/05 1:0 p.m.46 views

CVE-2018-1795

The CVE-2018-1795 entry concerns IBM Robotic Process Automation with Automation Anywhere Enterprise 10 (V10.0), where a cross-site scripting vulnerability exists in the Web UI that can allow injection of arbitrary JavaScript code and potentially lead to credentials disclosure within a trusted ses...

6.1CVSS5.8AI score0.00894EPSS
Exploits0References2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/10/02 6:40 a.m.14 views

Security Bulletin: Cross-site scripting vulnerability in IBM Robotic Process Automation with Automation Anywhere (CVE-2018-1795)

Summary IBM Robotic Process Automation with Automation Anywhere is vulnerable to a cross-site scripting vulnerability Vulnerability Details CVEID: CVE-2018-1795 DESCRIPTION: IBM Robotic Process Automation with Automation Anywhere Enterprise is vulnerable to cross-site scripting. This vulnerabilit...

6.1CVSS1AI score0.00894EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/10/02 6:40 a.m.15 views

Security Bulletin: Cross-site scripting vulnerability in IBM Robotic Process Automation with Automation Anywhere (CVE-2018-1812)

Summary IBM Robotic Process Automation with Automation Anywhere is vulnerable to a cross-site scripting vulnerability Vulnerability Details CVEID: CVE-2018-1812 DESCRIPTION: IBM Robotic Process Automation with Automation Anywhere Enterprise is vulnerable to persistent cross-site scripting, caused...

5.4CVSS0.9AI score0.0066EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 7:9 a.m.23 views

Security Bulletin: Remote Code Execution vulnerability in IBM Robotic Process Automation with Automation Anywhere (CVE-2018-1547)

Summary IBM Robotic Process Automation with Automation Anywhere is vulnerable to a remote code execution vulnerability Vulnerability Details CVEID: CVE-2018-1547 DESCRIPTION: IBM Robotic Process Automation with Automation Anywhere could allow a remote attacker to execute arbitrary code on the...

8CVSS8.3AI score0.02178EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 7:9 a.m.17 views

Security Bulletin: Cross-Site Request Forgery vulnerability in IBM Robotic Process Automation with Automation Anywhere (CVE-2018-1514)

Summary IBM Robotic Process Automation with Automation Anywhere is vulnerable to cross-site request forgery. Vulnerability Details CVEID: CVE-2018-1514 DESCRIPTION: IBM Robotic Process Automation with Automation Anywhere is vulnerable to cross-site request forgery which could allow an attacker to...

8.8CVSS6.6AI score0.00527EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 7:8 a.m.30 views

Security Bulletin: A security vulnerability has been identified in Micosoft SQL Server Express shipped with IBM Robotic Process Automation with Automation Anywhere CVE-2014-3566

Summary Microsoft SQL Server Express 2014 is shipped with IBM Robotic Process Automation with Automation Anywhere. Information about a security vulnerability affecting Microsoft SQL Server Express 2014 has been published in a security bulletin. Vulnerability Details Refer to the security bulletin...

4.3CVSS0.5AI score0.99999EPSS
Exploits7Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 7:8 a.m.17 views

Security Bulletin: Cross-Site Scripting vulnerability in IBM Robotic Process Automation with Automation Anywhere (CVE-2017-1751)

Summary IBM RPA with Automation Anywhere is vulnerable to cross-site scripting. Vulnerability Details CVEID: CVE-2017-1751 DESCRIPTION: IBM Robotic Process Automation with Automation Anywhere is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code...

5.4CVSS0.9AI score0.00694EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2018/06/12 12:0 a.m.5 views

IBM Robotic Process Automation with Automation Anywhere Arbitrary Command Execution Vulnerability

IBM Robotic Process Automation with Automation Anywhere is a process automation solution developed by IBM USA and Automation Anywhere. A security vulnerability exists in IBM Robotic Process Automation with Automation Anywhere version 10.0, which stems from the program's failure to properly encode...

8CVSS7.1AI score0.02178EPSS
Exploits0References1
Rows per page
Query Builder