Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm robotic process automation with automation anywhere 11 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-4336
IBM Robotic Process Automation with Automation Anywhere 11 uses an inadequate account lockout setting that could allow a remote malicious user to brute force account credentials. IBM X-Force ID: 161411.
Ibm Robotic Process Automation With Automation Anywhere
8.8
CVSSv3
CVE-2018-1552
IBM Robotic Process Automation with Automation Anywhere 10.0 and 11.0 allows a remote malicious user to execute arbitrary code on the system, caused by a missing restriction in which file types can be uploaded to the control room. By uploading a malicious file and tricking a vict...
Ibm Robotic Process Automation With Automation Anywhere 10
Ibm Robotic Process Automation With Automation Anywhere 11
7.8
CVSSv3
CVE-2018-1877
IBM Robotic Process Automation with Automation Anywhere 11 could store highly sensitive information in the form of unencrypted passwords that would be available to a local user. IBM X-Force ID: 151713.
Ibm Robotic Process Automation With Automation Anywhere 11.0
7.1
CVSSv3
CVE-2019-4298
IBM Robotic Process Automation with Automation Anywhere 11 uses a high privileged PostgreSQL account for database access which could allow a local user to perform actions they should not have privileges to execute. IBM X-Force ID: 160764.
Ibm Robotic Process Automation With Automation Anywhere
5.5
CVSSv3
CVE-2019-4299
IBM Robotic Process Automation with Automation Anywhere 11 could allow a local user to obtain highly sensitive information from log files when debugging is enabled. IBM X-Force ID: 160765.
Ibm Robotic Process Automation With Automation Anywhere
5.5
CVSSv3
CVE-2018-1876
IBM Robotic Process Automation with Automation Anywhere 11 could under certain cases, display the password in a Control Room log file after installation. IBM X-Force ID: 151707.
Ibm Robotic Process Automation With Automation Anywhere 11.0
5.4
CVSSv3
CVE-2019-4297
IBM Robotic Process Automation with Automation Anywhere 11 could allow a remote authenticated malicious user to conduct an LDAP injection. By using a specially crafted request, an attacker could exploit this vulnerability to make unauthorized queries or modify the LDAP content. I...
Ibm Robotic Process Automation With Automation Anywhere
5.4
CVSSv3
CVE-2018-1908
IBM Robotic Process Automation with Automation Anywhere 11 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trust...
Ibm Robotic Process Automation With Automation Anywhere
5.3
CVSSv3
CVE-2019-4337
IBM Robotic Process Automation with Automation Anywhere 11 could allow an malicious user to obtain sensitive information due to missing authentication in Ignite nodes. IBM X-Force ID: 161412.
Ibm Robotic Process Automation With Automation Anywhere
5.3
CVSSv3
CVE-2018-1878
IBM Robotic Process Automation with Automation Anywhere 11 could disclose sensitive information in a web request that could aid in future attacks against the system. IBM X-Force ID: 151714.
Ibm Robotic Process Automation With Automation Anywhere 11
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »