PT-2022-21933 · Ibm · Ibm Robotic Process Automation
Published
2022-06-24
·
Updated
2022-07-05
·
CVE-2022-33953
CVSS v3.1
4.6
Medium
| Vector | AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
IBM Robotic Process Automation versions 21.0.1 through 21.0.2
Description
The issue allows a user with physical access to the system to obtain sensitive information due to insufficiently protected access tokens.
Recommendations
For versions 21.0.1 and 21.0.2, at the moment, there is no information about a newer version that contains a fix for this issue.
Fix
Insufficiently Protected Credentials
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Robotic Process Automation