Robotic Process Automation Security Vulnerabilities and Issues — Robotic Process Automation CVE List

Lucene search

IbmRobotic Process Automation

5 matches found

CVE•added 2022/05/05 4:15 p.m.•1012 views

CVE-2022-22434

IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 could allow a user with physical access to create an API request modified to create additional objects. IBM X-Force ID: 224159.

4.6CVSS4.3AI score0.00048EPSS

CVE•added 2022/05/05 4:15 p.m.•99 views

CVE-2022-22433

IBM Robotic Process Automation 21.0.1 and 21.0.2 is vulnerable to External Service Interaction attack, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability to induce the application to perform server-side DNS lookups or HTTP requests to arbitrary ...

7.5CVSS7.4AI score0.00248EPSS

CVE•added 2022/05/09 5:15 p.m.•90 views

CVE-2022-22319

IBM Robotic Process Automation 21.0.1 could allow a register user on the system to physically delete a queue that could cause disruption for any scripts dependent on the queue. IBM X-Force ID: 218366.

5.5CVSS5.3AI score0.0031EPSS

CVE•added 2022/05/12 4:15 p.m.•77 views

CVE-2022-22413

IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 223022.

9.8CVSS9.2AI score0.00261EPSS

CVE•added 2022/05/05 4:15 p.m.•73 views

CVE-2022-22415

A vulnerability exists where an IBM Robotic Process Automation 21.0.1 regular user is able to obtain view-only access to some admin pages in the Control Center IBM X-Force ID: 223029.

6.5CVSS6.1AI score0.00161EPSS