Description
IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 is vulnerable to man in the middle attacks through manipulation of the client proxy configuration. IBM X-Force ID: 233575.
CVSS breakdown
CVSS 3.0
Confidentiality
None
Integrity
High
Scope
Unchanged
User Interaction
None
Availability
None
Privileges Required
None
Attack Vector
Adjacent
Attack Complexity
Low
E
Unchanged
RL
O
RC
Changed
Affected products
- ibm / robotic_process_automation21.0.0 – 21.0.0
- ibm / robotic_process_automation21.0.1 – 21.0.1
- ibm / robotic_process_automation21.0.2 – 21.0.2