Lucene search

[email protected]NVD:CVE-2022-22334

HistoryAug 01, 2022 - 11:15 a.m.

CVE-2022-22334

2022-08-0111:15:13

[email protected]

web.nvd.nist.gov

ibm

robotic process automation

information access

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

EPSS

0.001

Percentile

19.6%

JSON

IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 could allow a user to access information from a tenant of which they should not have access. IBM X-Force ID: 219391.

Affected configurations

Nvd

Node

ibmrobotic_process_automationRange21.0.1–21.0.1.7

ibmrobotic_process_automationRange21.0.2–21.0.2.5

ibmrobotic_process_automationMatch21.0.0

VendorProductVersionCPE
ibmrobotic_process_automation*cpe:2.3:a:ibm:robotic_process_automation:*:*:*:*:*:*:*:*
ibmrobotic_process_automation21.0.0cpe:2.3:a:ibm:robotic_process_automation:21.0.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	robotic_process_automation	*	cpe:2.3:a:ibm:robotic_process_automation::::::::
ibm	robotic_process_automation	21.0.0	cpe:2.3:a:ibm:robotic_process_automation:21.0.0:::::::*

References

exchange.xforce.ibmcloud.com/vulnerabilities/219391

www.ibm.com/support/pages/node/6608550

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

EPSS

0.001

Percentile

19.6%

JSON

Related for NVD:CVE-2022-22334

prion1 ibm1 cvelist1 cve1