Ibm · Ibm Robotic Process Automation With Automation Anywhere · CVE-2020-4901
**Name of the Vulnerable Software and Affected Versions**
IBM Robotic Process Automation with Automation Anywhere version 11.0
**Description**
The issue allows an attacker on the network to obtain sensitive information or cause a denial of service through `username` enumeration.
**Recommendations**
For IBM Robotic Process Automation with Automation Anywhere version 11.0, consider restricting access to sensitive information and implementing measures to prevent denial of service attacks until a fix is available. As a temporary workaround, avoid using the `username` enumeration feature to minimize the risk of exploitation.