Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm robotic process automation vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-43058
IBM Robotic Process Automation 23.0.9 is vulnerable to privilege escalation that affects ownership of projects. IBM X-Force ID: 247527.
Ibm Robotic Process Automation 23.0.9
Ibm Robotic Process Automation For Cloud Pak 23.0.9
9.8
CVSSv3
CVE-2023-38734
IBM Robotic Process Automation 21.0.0 up to and including 21.0.7.1 and 23.0.0 up to and including 23.0.1 is vulnerable to incorrect privilege assignment when importing users from an LDAP directory. IBM X-Force ID: 262481.
Ibm Robotic Process Automation
Ibm Robotic Process Automation 23.0.0
Ibm Robotic Process Automation 23.0.1
9.8
CVSSv3
CVE-2022-35280
IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 does not require that users should have strong passwords by default, which makes it easier for malicious users to compromise user accounts. IBM X-Force ID: 230634.
Ibm Robotic Process Automation For Cloud Pak 21.0.2
Ibm Robotic Process Automation For Cloud Pak 21.0.1
Ibm Robotic Process Automation For Cloud Pak 21.0.0
9.8
CVSSv3
CVE-2022-22413
IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database. IBM X-Force ID: 22302...
Ibm Robotic Process Automation 21.0.1
Ibm Robotic Process Automation 21.0.2
Ibm Robotic Process Automation 21.0.0
9.8
CVSSv3
CVE-2019-4336
IBM Robotic Process Automation with Automation Anywhere 11 uses an inadequate account lockout setting that could allow a remote malicious user to brute force account credentials. IBM X-Force ID: 161411.
Ibm Robotic Process Automation With Automation Anywhere
8.8
CVSSv3
CVE-2022-43844
IBM Robotic Process Automation for Cloud Pak 20.12 up to and including 21.0.3 is vulnerable to broken access control. A user is not correctly redirected to the platform log out screen when logging out of IBM RPA for Cloud Pak. IBM X-Force ID: 239081.
Ibm Robotic Process Automation For Cloud Pak
8.8
CVSSv3
CVE-2018-1552
IBM Robotic Process Automation with Automation Anywhere 10.0 and 11.0 allows a remote malicious user to execute arbitrary code on the system, caused by a missing restriction in which file types can be uploaded to the control room. By uploading a malicious file and tricking a vict...
Ibm Robotic Process Automation With Automation Anywhere 10
Ibm Robotic Process Automation With Automation Anywhere 11
8.8
CVSSv3
CVE-2018-1514
IBM Robotic Process Automation with Automation Anywhere 10.0 is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 141622.
Ibm Robotic Process Automation With Automation Anywhere 10.0
7.8
CVSSv3
CVE-2023-22593
IBM Robotic Process Automation for Cloud Pak 21.0.1 up to and including 21.0.7.3 and 23.0.0 up to and including 23.0.3 is vulnerable to security misconfiguration of the Redis container which may provide elevated privileges. IBM X-Force ID: 244074.
Ibm Robotic Process Automation
7.8
CVSSv3
CVE-2023-22592
IBM Robotic Process Automation for Cloud Pak 21.0.1 up to and including 21.0.4 could allow a local user to perform unauthorized actions due to insufficient permission settings. IBM X-Force ID: 244073.
Ibm Robotic Process Automation For Cloud Pak
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »