3 matches found
CVE-2023-22591
IBM Robotic Process Automation 21.0.1 through 21.0.7 and 23.0.0 through 23.0.1 could allow a user with physical access to the system due to session tokens for not being invalidated after a password reset. IBM X-Force ID: 243710...
CVE-2023-22591 IBM Robotic Process Automation session fixation
IBM Robotic Process Automation 21.0.1 through 21.0.7 and 23.0.0 through 23.0.1 could allow a user with physical access to the system due to session tokens for not being invalidated after a password reset. IBM X-Force ID: 243710...
CVE-2023-22591
CVE-2023-22591 affects IBM Robotic Process Automation versions 21.0.1–21.0.7 and 23.0.0–23.0.1. Root cause: session tokens are not invalidated after a password reset, potentially enabling an attacker with physical access to gain access to the system. Exploitation status is not provided in the sup...