Vulnerabilities > IBM > Robotic Process Automation > 21.0.0

DATE CVE VULNERABILITY TITLE RISK
2022-06-24 CVE-2022-33953 Insufficiently Protected Credentials vulnerability in IBM products
IBM Robotic Process Automation 21.0.1 and 21.0.2 could allow a user with psychical access to the system to obtain sensitive information due to insufficiently protected access tokens.
local
low complexity
ibm CWE-522
2.1
2.1
2022-06-20 CVE-2022-22414 Unspecified vulnerability in IBM Robotic Process Automation
IBM Robotic Process Automation 21.0.2 could allow a local user to obtain sensitive web service configuration credentials from system memory.
local
low complexity
ibm
5.5
5.5
2022-06-17 CVE-2022-30607 Information Exposure vulnerability in IBM Robotic Process Automation
IBM Robotic Process Automation 20.10.0, 20.12.5, 21.0.0, 21.0.1, and 21.0.2 contains a vulnerability that could allow a user to obtain sensitive information due to information properly masked in the control center UI.
network
low complexity
ibm CWE-200
6.5
6.5
2022-05-12 CVE-2022-22413 SQL Injection vulnerability in IBM Robotic Process Automation 21.0.0/21.0.1/21.0.2
IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 is vulnerable to SQL injection.
network
low complexity
ibm CWE-89
7.5
7.5