Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm robotic process automation with automation anywhere vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2018-1552
IBM Robotic Process Automation with Automation Anywhere 10.0 and 11.0 allows a remote malicious user to execute arbitrary code on the system, caused by a missing restriction in which file types can be uploaded to the control room. By uploading a malicious file and tricking a vict...
Ibm Robotic Process Automation With Automation Anywhere 11
Ibm Robotic Process Automation With Automation Anywhere 10
6.4
CVSSv2
CVE-2020-4901
IBM Robotic Process Automation with Automation Anywhere 11.0 could allow an attacker on the network to obtain sensitive information or cause a denial of service through username enumeration. IBM X-Force ID: 190992.
Ibm Robotic Process Automation With Automation Anywhere
4
CVSSv2
CVE-2018-2006
IBM Robotic Process Automation with Automation Anywhere 11 could allow a remote malicious user to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to upload arbitrary files to the system. IB...
Ibm Robotic Process Automation With Automation Anywhere
4
CVSSv2
CVE-2019-4295
IBM Robotic Process Automation with Automation Anywhere 11 could allow an attacker with specialized access to obtain highly sensitive from the credential vault. IBM X-Force ID: 160758.
Ibm Robotic Process Automation With Automation Anywhere
2.1
CVSSv2
CVE-2019-4296
IBM Robotic Process Automation with Automation Anywhere 11 information disclosure could allow a local user to obtain e-mail contents from the client debug log file. IBM X-Force ID: 160759.
Ibm Robotic Process Automation With Automation Anywhere
5.5
CVSSv2
CVE-2019-4297
IBM Robotic Process Automation with Automation Anywhere 11 could allow a remote authenticated malicious user to conduct an LDAP injection. By using a specially crafted request, an attacker could exploit this vulnerability to make unauthorized queries or modify the LDAP content. I...
Ibm Robotic Process Automation With Automation Anywhere
3.6
CVSSv2
CVE-2019-4298
IBM Robotic Process Automation with Automation Anywhere 11 uses a high privileged PostgreSQL account for database access which could allow a local user to perform actions they should not have privileges to execute. IBM X-Force ID: 160764.
Ibm Robotic Process Automation With Automation Anywhere
1.9
CVSSv2
CVE-2019-4299
IBM Robotic Process Automation with Automation Anywhere 11 could allow a local user to obtain highly sensitive information from log files when debugging is enabled. IBM X-Force ID: 160765.
Ibm Robotic Process Automation With Automation Anywhere
5
CVSSv2
CVE-2019-4336
IBM Robotic Process Automation with Automation Anywhere 11 uses an inadequate account lockout setting that could allow a remote malicious user to brute force account credentials. IBM X-Force ID: 161411.
Ibm Robotic Process Automation With Automation Anywhere
5
CVSSv2
CVE-2019-4337
IBM Robotic Process Automation with Automation Anywhere 11 could allow an malicious user to obtain sensitive information due to missing authentication in Ignite nodes. IBM X-Force ID: 161412.
Ibm Robotic Process Automation With Automation Anywhere
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »