Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ibm robotic process automation vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2018-1877
IBM Robotic Process Automation with Automation Anywhere 11 could store highly sensitive information in the form of unencrypted passwords that would be available to a local user. IBM X-Force ID: 151713.
Ibm Robotic Process Automation With Automation Anywhere 11.0
7.7
CVSSv3
CVE-2018-1547
IBM Robotic Process Automation with Automation Anywhere 10.0 could allow a remote malicious user to execute arbitrary code on the system, caused by improper output encoding in an CSV export. By persuading a victim to download the CSV export, to open it in Microsoft Excel and to c...
Ibm Robotic Process Automation With Automation Anywhere 10.0
7.5
CVSSv3
CVE-2022-43574
"IBM Robotic Process Automation 21.0.1, 21.0.2, 21.0.3, 21.0.4, and 21.0.5 is vulnerable to incorrect permission assignment which could allow access to application configurations. IBM X-Force ID: 238679."
Ibm Robotic Process Automation
Ibm Robotic Process Automation For Cloud Pak
7.5
CVSSv3
CVE-2022-39168
IBM Robotic Process Automation Clients are vulnerable to proxy credentials being exposed in upgrade logs. IBM X-Force ID: 235422.
Ibm Robotic Process Automation For Services 21.0.3
Ibm Robotic Process Automation For Services 21.0.4
Ibm Robotic Process Automation For Cloud Pak 21.0.4
Ibm Robotic Process Automation For Cloud Pak 21.0.3
Ibm Robotic Process Automation 21.0.4
Ibm Robotic Process Automation 21.0.3
7.5
CVSSv3
CVE-2022-22505
IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 contains a vulnerability that could allow IBM tenant credentials to be exposed. IBM X-Force ID: 227288.
Ibm Robotic Process Automation
7.5
CVSSv3
CVE-2022-22433
IBM Robotic Process Automation 21.0.1 and 21.0.2 is vulnerable to External Service Interaction attack, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability to induce the application to perform server-side DNS lookups or HTTP req...
Ibm Robotic Process Automation 21.0.2
Ibm Robotic Process Automation
Ibm Robotic Process Automation As A Service
7.2
CVSSv3
CVE-2022-30616
IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 could allow a privileged user to elevate their privilege to platform administrator through manipulation of APIs. IBM X-Force ID: 227978.
Ibm Robotic Process Automation
7.1
CVSSv3
CVE-2019-4298
IBM Robotic Process Automation with Automation Anywhere 11 uses a high privileged PostgreSQL account for database access which could allow a local user to perform actions they should not have privileges to execute. IBM X-Force ID: 160764.
Ibm Robotic Process Automation With Automation Anywhere
6.5
CVSSv3
CVE-2023-45189
A vulnerability in IBM Robotic Process Automation and IBM Robotic Process Automation for Cloud Pak 21.0.0 up to and including 21.0.7.10, 23.0.0 up to and including 23.0.10 may result in access to client vault credentials. This difficult to exploit vulnerability could allow a low ...
Ibm Robotic Process Automation For Cloud Pak
6.5
CVSSv3
CVE-2023-23476
IBM Robotic Process Automation 21.0.0 up to and including 21.0.7.latest is vulnerable to unauthorized access to data due to insufficient authorization validation on some API routes. IBM X-Force ID: 245425.
Ibm Robotic Process Automation
Ibm Robotic Process Automation For Cloud Pak
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »