Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Orchestrator
(Uipath)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 2 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2019-08-08 | CVE-2018-19855 | UiPath Orchestrator before 2018.3.4 allows CSV Injection, related to the Audit export, Robot log export, and Transaction log export features. | Orchestrator | 5.5 | ||
| 2019-04-11 | CVE-2018-17305 | UiPath Orchestrator through 2018.2.4 allows any authenticated user to change the information of arbitrary users (even administrators) leading to privilege escalation and remote code execution. | Orchestrator | 8.8 |