Ibm

Robotic Process Automation

46 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.9

CVE-2022-22490

  • EPSS 0.26%
  • Veröffentlicht 10.08.2022 17:15:08
  • Zuletzt bearbeitet 21.11.2024 06:46:53

IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 could allow a privileged user to obtain sensitive Azure bot credential information. IBM X-Force ID: 226342.

6.5

CVE-2022-34338

  • EPSS 0.13%
  • Veröffentlicht 01.08.2022 11:15:14
  • Zuletzt bearbeitet 21.11.2024 07:09:19

IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 could disclose sensitive information due to improper privilege management for storage provider types. IBM X-Force ID: 229962.

7.2

CVE-2022-30616

  • EPSS 0.4%
  • Veröffentlicht 01.08.2022 11:15:13
  • Zuletzt bearbeitet 21.11.2024 07:03:02

IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 could allow a privileged user to elevate their privilege to platform administrator through manipulation of APIs. IBM X-Force ID: 227978.

4.3

CVE-2022-22334

  • EPSS 0.13%
  • Veröffentlicht 01.08.2022 11:15:13
  • Zuletzt bearbeitet 21.11.2024 06:46:39

IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 could allow a user to access information from a tenant of which they should not have access. IBM X-Force ID: 219391.

7.5

CVE-2022-22505

  • EPSS 0.21%
  • Veröffentlicht 01.08.2022 11:15:13
  • Zuletzt bearbeitet 21.11.2024 06:46:54

IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 contains a vulnerability that could allow IBM tenant credentials to be exposed. IBM X-Force ID: 227288.

6.5

CVE-2022-33169

  • EPSS 0.14%
  • Veröffentlicht 01.08.2022 11:15:13
  • Zuletzt bearbeitet 21.11.2024 07:07:38

IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 is vulnerable to insufficiently protected credentials for users created via a bulk upload. IBM X-Force ID: 228888.

4.6

CVE-2022-22412

  • EPSS 0.09%
  • Veröffentlicht 26.07.2022 15:15:10
  • Zuletzt bearbeitet 21.11.2024 06:46:46

IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 could allow a user with access to the local host (client machine) to obtain a login access token. IBM X-Force ID: 223019.

4.6

CVE-2022-33953

  • EPSS 0.05%
  • Veröffentlicht 24.06.2022 16:15:10
  • Zuletzt bearbeitet 21.11.2024 07:08:40

IBM Robotic Process Automation 21.0.1 and 21.0.2 could allow a user with psychical access to the system to obtain sensitive information due to insufficiently protected access tokens. IBM X-Force ID: 229198.

5.4

CVE-2022-22502

  • EPSS 0.22%
  • Veröffentlicht 24.06.2022 16:15:09
  • Zuletzt bearbeitet 21.11.2024 06:46:54

IBM Robotic Process Automation 21.0.1 and 21.0.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials discl...

5.5

CVE-2022-22414

  • EPSS 0.04%
  • Veröffentlicht 20.06.2022 17:15:08
  • Zuletzt bearbeitet 21.11.2024 06:46:46

IBM Robotic Process Automation 21.0.2 could allow a local user to obtain sensitive web service configuration credentials from system memory. IBM X-Force ID: 223026.