Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Robotic_process_automation
(Ibm)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 43 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2025-04-14 | CVE-2024-49825 | IBM Robotic Process Automation and Robotic Process Automation for Cloud Pak 21.0.0 through 21.0.7.20 and 23.0.0 through 23.0.20 does not invalidate session after a logout which could allow an authenticated user to impersonate another user on the system. | Robotic_process_automation, Robotic_process_automation_for_cloud_pak | 4.3 | ||
| 2025-01-18 | CVE-2024-49824 | IBM Robotic Process Automation 21.0.0 through 21.0.7.18 and 23.0.0 through 23.0.18 and IBM Robotic Process Automation for Cloud Pak 21.0.0 through 21.0.7.18 and 23.0.0 through 23.0.18 could allow an authenticated user to perform unauthorized actions as a privileged user due to improper validation of client-side security enforcement. | Robotic_process_automation, Robotic_process_automation_for_cloud_pak | 6.5 | ||
| 2022-09-29 | CVE-2022-39168 | IBM Robotic Process Automation Clients are vulnerable to proxy credentials being exposed in upgrade logs. IBM X-Force ID: 235422. | Robotic_process_automation, Robotic_process_automation_for_cloud_pak, Robotic_process_automation_for_services | 7.5 | ||
| 2022-11-03 | CVE-2022-43574 | "IBM Robotic Process Automation 21.0.1, 21.0.2, 21.0.3, 21.0.4, and 21.0.5 is vulnerable to incorrect permission assignment which could allow access to application configurations. IBM X-Force ID: 238679." | Robotic_process_automation, Robotic_process_automation_for_cloud_pak | 7.5 |