Vulnerabilities > CVE-2022-36774 - Unspecified vulnerability in IBM products

CVSS 5.3 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

high complexity

ibm

NVD

Published: 2022-10-06

Updated: 2023-08-08

Summary

IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 is vulnerable to man in the middle attacks through manipulation of the client proxy configuration. IBM X-Force ID: 233575.

Vulnerable Configurations

Part	Description	Count
Application	Ibm IBM Robotic Process Automation 21.0.0 IBM Robotic Process Automation 21.0.1 IBM Robotic Process Automation 21.0.1.2 IBM Robotic Process Automation 21.0.1.5 IBM Robotic Process Automation 21.0.2 IBM Robotic Process Automation 21.0.2.1 IBM Robotic Process Automation 21.0.2.2 IBM Robotic Process Automation 21.0.2.5 IBM Robotic Process Automation 21.0.3 IBM Robotic Process Automation AS A Service 21.0.2.2 IBM Robotic Process Automation AS A Service 21.0.2.5 IBM Robotic Process Automation FOR Cloud PAK 21.0.0 IBM Robotic Process Automation FOR Cloud PAK 21.0.1 IBM Robotic Process Automation FOR Cloud PAK 21.0.2 IBM Robotic Process Automation FOR Cloud PAK 21.0.2.2 IBM Robotic Process Automation FOR Cloud PAK 21.0.2.5	16
OS	Microsoft Microsoft Windows -	1

Summary

Vulnerable Configurations

References