Ibm · Ibm Robotic Process Automation · CVE-2023-35901
**Name of the Vulnerable Software and Affected Versions**
IBM Robotic Process Automation versions 21.0.0 through 21.0.7.6
IBM Robotic Process Automation versions 23.0.0 through 23.0.6
**Description**
The issue is related to weaknesses in the authentication procedure of the software. Exploitation of this issue could allow a remote attacker to read, modify, or delete data. It is also associated with a client-side validation bypass, which could enable invalid changes or values in certain fields.
**Recommendations**
For versions 21.0.0 through 21.0.7.6, update to a version outside of this range to resolve the issue.
For versions 23.0.0 through 23.0.6, update to a version outside of this range to resolve the issue.
As a temporary workaround, consider restricting access to sensitive data and fields to minimize the risk of exploitation.