A hardcoded cryptographic key in Automation360 22 allows an attacker to decrypt exported RPA packages.
7.5CVSS
7.4AI Score
0.002EPSS
A CSV injection vulnerability in Automation Anywhere Automation 360 version 21094 allows attackers to execute arbitrary code via a crafted payload. NOTE: Automation Anywhere disputes this report, arguing the attacker executes everything from the client side and does not attack the Control Room. The...
7.8CVSS
7.8AI Score
0.001EPSS