IBM Robotic Process Automation could store highly sensitive information in the form of unencrypted passwords that would be available to a local user.
CVEID: CVE-2018-1877 DESCRIPTION: IBM Robotic Process Automation could store highly sensitive information in the form of unencrypted passwords that would be available to a local user.
CVSS Base Score: 6.2
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/151713> for the current score
CVSS Environmental Score*: Undefined
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)
Affected IBM Robotic Process Automation with Automation Anywhere | Affected Versions |
---|---|
IBM Robotic Process Automation with Automation Anywhere | 11.0 |
The recommended solution is to apply the interim fix containing APAR JR60078 as soon as practical:
None