Description
IBM Robotic Process Automation 21.0.0 through 21.0.7.19 and 23.0.0 through 23.0.19 could allow a remote attacker to obtain sensitive data that may be exposed through certain crypto-analytic attacks.
CVSS breakdown
CVSS 3.1
Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None
Affected products
- ibm / robotic_process_automation21.0.1 – 21.0.1
- ibm / robotic_process_automation21.0.7.19 – 21.0.7.19
- ibm / robotic_process_automation23.0.0 – 23.0.0
- ibm / robotic_process_automation23.0.19 – 23.0.19