Robotic Process Automation Security Vulnerabilities and Issues — Robotic Process Automation CVE List

Lucene search

IbmRobotic Process Automation

5 matches found

CVE•added 2022/05/05 4:15 p.m.•99 views

CVE-2022-22433

IBM Robotic Process Automation 21.0.1 and 21.0.2 is vulnerable to External Service Interaction attack, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability to induce the application to perform server-side DNS lookups or HTTP requests to arbitrary ...

7.5CVSS7.4AI score0.00248EPSS

CVE•added 2022/08/01 11:15 a.m.•68 views

CVE-2022-22505

IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 contains a vulnerability that could allow IBM tenant credentials to be exposed. IBM X-Force ID: 227288.

7.5CVSS7.2AI score0.00286EPSS

CVE•added 2022/09/29 4:15 p.m.•60 views

CVE-2022-39168

IBM Robotic Process Automation Clients are vulnerable to proxy credentials being exposed in upgrade logs. IBM X-Force ID: 235422.

7.5CVSS7.2AI score0.00071EPSS

CVE•added 2022/11/03 8:15 p.m.•54 views

CVE-2022-43574

"IBM Robotic Process Automation 21.0.1, 21.0.2, 21.0.3, 21.0.4, and 21.0.5 is vulnerable to incorrect permission assignment which could allow access to application configurations. IBM X-Force ID: 238679."

7.5CVSS7.3AI score0.00054EPSS

CVE•added 2023/06/27 7:15 p.m.•42 views

CVE-2023-22593

IBM Robotic Process Automation for Cloud Pak 21.0.1 through 21.0.7.3 and 23.0.0 through 23.0.3 is vulnerable to security misconfiguration of the Redis container which may provide elevated privileges. IBM X-Force ID: 244074.

7.8CVSS5.1AI score0.00025EPSS