Vulnerabilities > IBM > Robotic Process Automation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-17 | CVE-2022-30607 | Information Exposure vulnerability in IBM Robotic Process Automation IBM Robotic Process Automation 20.10.0, 20.12.5, 21.0.0, 21.0.1, and 21.0.2 contains a vulnerability that could allow a user to obtain sensitive information due to information properly masked in the control center UI. | 6.5 |
| 2022-05-12 | CVE-2022-22413 | SQL Injection vulnerability in IBM Robotic Process Automation 21.0.0/21.0.1/21.0.2 IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 is vulnerable to SQL injection. | 7.5 |
| 2022-05-09 | CVE-2022-22319 | Unspecified vulnerability in IBM products IBM Robotic Process Automation 21.0.1 could allow a register user on the system to physically delete a queue that could cause disruption for any scripts dependent on the queue. | 5.4 |
| 2022-05-05 | CVE-2022-22415 | Unspecified vulnerability in IBM Robotic Process Automation 21.0.1 A vulnerability exists where an IBM Robotic Process Automation 21.0.1 regular user is able to obtain view-only access to some admin pages in the Control Center IBM X-Force ID: 223029. | 4.0 |
| 2022-05-05 | CVE-2022-22433 | Improper Input Validation vulnerability in IBM products IBM Robotic Process Automation 21.0.1 and 21.0.2 is vulnerable to External Service Interaction attack, caused by improper validation of user-supplied input. | 5.0 |
| 2022-05-05 | CVE-2022-22434 | Unspecified vulnerability in IBM products IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 could allow a user with physical access to create an API request modified to create additional objects. | 2.1 |