2 matches found
CVE-2022-22433
IBM Robotic Process Automation (RPA) versions 21.0.1 and 21.0.2 are affected by an External Service Interaction vulnerability caused by improper validation of user-supplied input. A remote attacker could induce the RPA server to perform server-side DNS lookups or HTTP requests to arbitrary domain...
Security Bulletin: IBM Robotic Process Automation is vulnerable to an issue where an API could be used to perform a DNS lookup via a third party provider.
Summary IBM Robotic Process Automation is vulnerable to an issue where an API could be used to perform a DNS lookup via a third party provider. Vulnerability Details CVEID: CVE-2022-22433 DESCRIPTION: IBM Robotic Process Automation is vulnerable to External Service Interaction attack, caused by...