356
VMScore

CVE-2018-2006

Published: 21/02/2019 Updated: 09/10/2019
CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8
CVSS v3 Base Score: 4.9 | Impact Score: 3.6 | Exploitability Score: 1.2
VMScore: 356
Vector: AV:N/AC:L/Au:S/C:N/I:P/A:N

Vulnerability Summary

IBM Robotic Process Automation with Automation Anywhere 11 could allow a remote malicious user to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to upload arbitrary files to the system. IBM X-Force ID: 155008.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

ibm robotic process automation with automation anywhere