Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm robotic process automation vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2023-23476
IBM Robotic Process Automation 21.0.0 up to and including 21.0.7.latest is vulnerable to unauthorized access to data due to insufficient authorization validation on some API routes. IBM X-Force ID: 245425.
Ibm Robotic Process Automation
Ibm Robotic Process Automation For Cloud Pak
8.8
CVSSv3
CVE-2018-1552
IBM Robotic Process Automation with Automation Anywhere 10.0 and 11.0 allows a remote malicious user to execute arbitrary code on the system, caused by a missing restriction in which file types can be uploaded to the control room. By uploading a malicious file and tricking a vict...
Ibm Robotic Process Automation With Automation Anywhere 10
Ibm Robotic Process Automation With Automation Anywhere 11
7.2
CVSSv3
CVE-2022-30616
IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 could allow a privileged user to elevate their privilege to platform administrator through manipulation of APIs. IBM X-Force ID: 227978.
Ibm Robotic Process Automation
7.5
CVSSv3
CVE-2022-22505
IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 contains a vulnerability that could allow IBM tenant credentials to be exposed. IBM X-Force ID: 227288.
Ibm Robotic Process Automation
6.5
CVSSv3
CVE-2022-33169
IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 is vulnerable to insufficiently protected credentials for users created via a bulk upload. IBM X-Force ID: 228888.
Ibm Robotic Process Automation
5.3
CVSSv3
CVE-2023-38718
IBM Robotic Process Automation 21.0.0 up to and including 21.0.7.8 could disclose sensitive information from access to RPA scripts, workflows and related data. IBM X-Force ID: 261606.
Ibm Robotic Process Automation
6.5
CVSSv3
CVE-2022-34338
IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 could disclose sensitive information due to improper privilege management for storage provider types. IBM X-Force ID: 229962.
Ibm Robotic Process Automation
5.4
CVSSv3
CVE-2018-1908
IBM Robotic Process Automation with Automation Anywhere 11 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trust...
Ibm Robotic Process Automation With Automation Anywhere
6.5
CVSSv3
CVE-2020-4901
IBM Robotic Process Automation with Automation Anywhere 11.0 could allow an attacker on the network to obtain sensitive information or cause a denial of service through username enumeration. IBM X-Force ID: 190992.
Ibm Robotic Process Automation With Automation Anywhere
5.4
CVSSv3
CVE-2019-4297
IBM Robotic Process Automation with Automation Anywhere 11 could allow a remote authenticated malicious user to conduct an LDAP injection. By using a specially crafted request, an attacker could exploit this vulnerability to make unauthorized queries or modify the LDAP content. I...
Ibm Robotic Process Automation With Automation Anywhere
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »