Description
IBM Robotic Process Automation for Cloud Pak 21.0.1, 21.0.2, 21.0.3, 21.0.4, and 21.0.5 is vulnerable to exposure of the first tenant owner e-mail address to users with access to the container platform. IBM X-Force ID: 238214.
CVSS breakdown
CVSS 3.1
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
None
Availability
None
Affected products
- ibm / robotic_process_automation_for_cloud_pak21.0.1, 21.0.2, 21.0.3, 21.0.4, 21.0.5 – 21.0.1, 21.0.2, 21.0.3, 21.0.4, 21.0.5