Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ibm robotic process automation with automation anywhere 10.0 vulnerabilities and exploits

(subscribe to this query)
9.3
CVSSv2
CVE-2018-1552
IBM Robotic Process Automation with Automation Anywhere 10.0 and 11.0 allows a remote malicious user to execute arbitrary code on the system, caused by a missing restriction in which file types can be uploaded to the control room. By uploading a malicious file and tricking a vict...
Ibm Robotic Process Automation With Automation Anywhere 10Ibm Robotic Process Automation With Automation Anywhere 11
4.3
CVSSv2
CVE-2018-1795
IBM Robotic Process Automation with Automation Anywhere Enterprise 10 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure wit...
Ibm Robotic Process Automation With Automation Anywhere 10.0
3.5
CVSSv2
CVE-2018-1812
IBM Robotic Process Automation with Automation Anywhere Enterprise 10 is vulnerable to persistent cross-site scripting, caused by missing escaping of a database field. An attacker that has access to the Control Room database could exploit this vulnerability to execute script in a...
Ibm Robotic Process Automation With Automation Anywhere 10.0
5.1
CVSSv2
CVE-2018-1547
IBM Robotic Process Automation with Automation Anywhere 10.0 could allow a remote malicious user to execute arbitrary code on the system, caused by improper output encoding in an CSV export. By persuading a victim to download the CSV export, to open it in Microsoft Excel and to c...
Ibm Robotic Process Automation With Automation Anywhere 10.0
6.8
CVSSv2
CVE-2018-1514
IBM Robotic Process Automation with Automation Anywhere 10.0 is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 141622.
Ibm Robotic Process Automation With Automation Anywhere 10.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionSSRFbuffer overflowCVE-2023-28952CVE-2023-41822CVE-2024-27956CVE-2023-7028CVE-2024-34447CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook