IBM Robotic Process Automation information disclosure | CVE-2023-45189
NAME
__________
IBM Robotic Process Automation information disclosure
Platforms Affected:
IBM Robotic Process Automation 21.0.0
IBM Robotic Process Automation for Cloud Pak 21.0.0
IBM Robotic Process Automation for Cloud Pak 23.0.0
IBM Robotic Process Automation 23.0.0
IBM Robotic Process Automation for Cloud Pak 21.0.7.10
IBM Robotic Process Automation for Cloud Pak 23.0.10
IBM Robotic Process Automation 21.0.7.10
IBM Robotic Process Automation 23.0.10
Risk Level:
6.5
Exploitability:
Unproven
Consequences:
Obtain Information
DESCRIPTION
__________
A vulnerability in IBM Robotic Process Automation and IBM Robotic Process Automation for Cloud Pak 21.0.0 through 21.0.7.10, 23.0.0 through 23.0.10 may result in access to client vault credentials. This difficult to exploit vulnerability could allow a low privileged attacker to programmatically access client vault credentials. IBM X-Force ID: 268752.
CVSS 3.0 Information
__________
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Access Vector:
Network
A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.
If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below
To keep up to date follow us on the below channels.
