Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm robotic process automation with automation anywhere 11 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2018-1552
IBM Robotic Process Automation with Automation Anywhere 10.0 and 11.0 allows a remote malicious user to execute arbitrary code on the system, caused by a missing restriction in which file types can be uploaded to the control room. By uploading a malicious file and tricking a vict...
Ibm Robotic Process Automation With Automation Anywhere 10
Ibm Robotic Process Automation With Automation Anywhere 11
5.3
CVSSv3
CVE-2018-1878
IBM Robotic Process Automation with Automation Anywhere 11 could disclose sensitive information in a web request that could aid in future attacks against the system. IBM X-Force ID: 151714.
Ibm Robotic Process Automation With Automation Anywhere 11
4.9
CVSSv3
CVE-2019-4295
IBM Robotic Process Automation with Automation Anywhere 11 could allow an attacker with specialized access to obtain highly sensitive from the credential vault. IBM X-Force ID: 160758.
Ibm Robotic Process Automation With Automation Anywhere
5.3
CVSSv3
CVE-2019-4337
IBM Robotic Process Automation with Automation Anywhere 11 could allow an malicious user to obtain sensitive information due to missing authentication in Ignite nodes. IBM X-Force ID: 161412.
Ibm Robotic Process Automation With Automation Anywhere
5.5
CVSSv3
CVE-2019-4299
IBM Robotic Process Automation with Automation Anywhere 11 could allow a local user to obtain highly sensitive information from log files when debugging is enabled. IBM X-Force ID: 160765.
Ibm Robotic Process Automation With Automation Anywhere
9.8
CVSSv3
CVE-2019-4336
IBM Robotic Process Automation with Automation Anywhere 11 uses an inadequate account lockout setting that could allow a remote malicious user to brute force account credentials. IBM X-Force ID: 161411.
Ibm Robotic Process Automation With Automation Anywhere
3.3
CVSSv3
CVE-2019-4296
IBM Robotic Process Automation with Automation Anywhere 11 information disclosure could allow a local user to obtain e-mail contents from the client debug log file. IBM X-Force ID: 160759.
Ibm Robotic Process Automation With Automation Anywhere
7.1
CVSSv3
CVE-2019-4298
IBM Robotic Process Automation with Automation Anywhere 11 uses a high privileged PostgreSQL account for database access which could allow a local user to perform actions they should not have privileges to execute. IBM X-Force ID: 160764.
Ibm Robotic Process Automation With Automation Anywhere
4.9
CVSSv3
CVE-2018-2006
IBM Robotic Process Automation with Automation Anywhere 11 could allow a remote malicious user to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to upload arbitrary files to the system. IB...
Ibm Robotic Process Automation With Automation Anywhere
5.4
CVSSv3
CVE-2019-4297
IBM Robotic Process Automation with Automation Anywhere 11 could allow a remote authenticated malicious user to conduct an LDAP injection. By using a specially crafted request, an attacker could exploit this vulnerability to make unauthorized queries or modify the LDAP content. I...
Ibm Robotic Process Automation With Automation Anywhere
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »