Ibm · Ibm Robotic Process Automation · CVE-2023-25680
**Name of the Vulnerable Software and Affected Versions**
IBM Robotic Process Automation versions 21.0.1 through 21.0.5
**Description**
The issue is related to insufficient protection of credentials. Specifically, Queue Provider credentials are not obfuscated while editing queue provider details.
**Recommendations**
For IBM Robotic Process Automation versions 21.0.1 through 21.0.5, consider restricting access to queue provider details until a fix is available. As a temporary workaround, limit editing of queue provider details to minimize the risk of credential exposure. At the moment, there is no information about a newer version that contains a fix for this vulnerability.