Shodan
Vulnerabilities
Vulnerable Software
Ibm:  >> Robotic Process Automation  >> 21.0.0  Security Vulnerabilities
CVE-2022-22503
IBM Robotic Process Automation 21.0.0 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 227125.
CVSS Score
6.1
EPSS Score
0.0
Published
2022-10-06
CVE-2022-22490
IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 could allow a privileged user to obtain sensitive Azure bot credential information. IBM X-Force ID: 226342.
CVSS Score
4.4
EPSS Score
0.001
Published
2022-08-10
CVE-2022-34338
IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 could disclose sensitive information due to improper privilege management for storage provider types. IBM X-Force ID: 229962.
CVSS Score
5.8
EPSS Score
0.0
Published
2022-08-01
CVE-2022-22334
IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 could allow a user to access information from a tenant of which they should not have access. IBM X-Force ID: 219391.
CVSS Score
4.2
EPSS Score
0.001
Published
2022-08-01
CVE-2022-22505
IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 contains a vulnerability that could allow IBM tenant credentials to be exposed. IBM X-Force ID: 227288.
CVSS Score
4.6
EPSS Score
0.001
Published
2022-08-01
CVE-2022-30616
IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 could allow a privileged user to elevate their privilege to platform administrator through manipulation of APIs. IBM X-Force ID: 227978.
CVSS Score
8.0
EPSS Score
0.001
Published
2022-08-01
CVE-2022-33169
IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 is vulnerable to insufficiently protected credentials for users created via a bulk upload. IBM X-Force ID: 228888.
CVSS Score
5.3
EPSS Score
0.0
Published
2022-08-01
CVE-2022-22412
IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 could allow a user with access to the local host (client machine) to obtain a login access token. IBM X-Force ID: 223019.
CVSS Score
4.2
EPSS Score
0.0
Published
2022-07-26
CVE-2022-33953
IBM Robotic Process Automation 21.0.1 and 21.0.2 could allow a user with psychical access to the system to obtain sensitive information due to insufficiently protected access tokens. IBM X-Force ID: 229198.
CVSS Score
4.6
EPSS Score
0.0
Published
2022-06-24
CVE-2022-22414
IBM Robotic Process Automation 21.0.2 could allow a local user to obtain sensitive web service configuration credentials from system memory. IBM X-Force ID: 223026.
CVSS Score
5.1
EPSS Score
0.0
Published
2022-06-20


Products
Pricing
Contact Us

Shodan ® - All rights reserved