Vulnerabilities > IBM > Robotic Process Automation > 20.10.0

DATE CVE VULNERABILITY TITLE RISK
2022-06-24 CVE-2022-33953 Insufficiently Protected Credentials vulnerability in IBM products
IBM Robotic Process Automation 21.0.1 and 21.0.2 could allow a user with psychical access to the system to obtain sensitive information due to insufficiently protected access tokens.
low complexity
ibm CWE-522
4.6
4.6
2022-06-20 CVE-2022-22414 Unspecified vulnerability in IBM Robotic Process Automation
IBM Robotic Process Automation 21.0.2 could allow a local user to obtain sensitive web service configuration credentials from system memory.
local
low complexity
ibm
5.5
5.5
2022-06-17 CVE-2022-30607 Information Exposure vulnerability in IBM Robotic Process Automation
IBM Robotic Process Automation 20.10.0, 20.12.5, 21.0.0, 21.0.1, and 21.0.2 contains a vulnerability that could allow a user to obtain sensitive information due to information properly masked in the control center UI.
network
low complexity
ibm CWE-200
6.5
6.5
2022-05-05 CVE-2022-22433 Improper Input Validation vulnerability in IBM products
IBM Robotic Process Automation 21.0.1 and 21.0.2 is vulnerable to External Service Interaction attack, caused by improper validation of user-supplied input.
network
low complexity
ibm CWE-20
7.5
7.5