Robotic Process Automation As A Service Security Vulnerabilities and Issues — Robotic Process Automation As A Service CVE List

Lucene search

IbmRobotic Process Automation As A Service

9 matches found

CVE•added 2022/05/05 4:15 p.m.•1012 views

CVE-2022-22434

IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 could allow a user with physical access to create an API request modified to create additional objects. IBM X-Force ID: 224159.

4.6CVSS4.3AI score0.00048EPSS

CVE•added 2022/05/05 4:15 p.m.•99 views

CVE-2022-22433

IBM Robotic Process Automation 21.0.1 and 21.0.2 is vulnerable to External Service Interaction attack, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability to induce the application to perform server-side DNS lookups or HTTP requests to arbitrary ...

7.5CVSS7.4AI score0.00248EPSS

CVE•added 2022/05/09 5:15 p.m.•90 views

CVE-2022-22319

IBM Robotic Process Automation 21.0.1 could allow a register user on the system to physically delete a queue that could cause disruption for any scripts dependent on the queue. IBM X-Force ID: 218366.

5.5CVSS5.3AI score0.0031EPSS

CVE•added 2022/11/03 8:15 p.m.•85 views

CVE-2022-38710

IBM Robotic Process Automation 21.0.1 and 21.0.2 could disclose sensitive version to an unauthorized control sphere information that could aid in further attacks against the system. IBM X-Force ID: 234292.

5.3CVSS4.9AI score0.00048EPSS

CVE•added 2022/08/10 5:15 p.m.•67 views

CVE-2022-22490

IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 could allow a privileged user to obtain sensitive Azure bot credential information. IBM X-Force ID: 226342.

4.9CVSS4.7AI score0.00069EPSS

CVE•added 2022/06/24 4:15 p.m.•60 views

CVE-2022-22502

IBM Robotic Process Automation 21.0.1 and 21.0.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 2...

5.4CVSS5.2AI score0.00215EPSS

CVE•added 2022/10/06 6:15 p.m.•58 views

CVE-2022-22503

IBM Robotic Process Automation 21.0.0 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against ...

6.1CVSS6.1AI score0.00048EPSS

CVE•added 2022/06/24 4:15 p.m.•50 views

CVE-2022-33953

IBM Robotic Process Automation 21.0.1 and 21.0.2 could allow a user with psychical access to the system to obtain sensitive information due to insufficiently protected access tokens. IBM X-Force ID: 229198.

4.6CVSS4.3AI score0.00049EPSS

CVE•added 2022/10/06 6:16 p.m.•42 views

CVE-2022-36774

IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 is vulnerable to man in the middle attacks through manipulation of the client proxy configuration. IBM X-Force ID: 233575.

6.5CVSS5.1AI score0.00021EPSS