exploitDog

GHSA-8mmh-5rjw-w4rg

Опубликовано: 15 мар. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

IBM Robotic Process Automation 21.0.1 through 21.0.5 is vulnerable to insufficiently protecting credentials. Queue Provider credentials are not obfuscated while editing queue provider details. IBM X-Force ID: 247032.

IBM Robotic Process Automation 21.0.1 through 21.0.5 is vulnerable to insufficiently protecting credentials. Queue Provider credentials are not obfuscated while editing queue provider details. IBM X-Force ID: 247032.

Ссылки

EPSS

Процентиль: 25%

0.00086

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-200

Связанные уязвимости

CVE-2023-25680

CVSS3: 4.2

nvd

почти 3 года назад

IBM Robotic Process Automation 21.0.1 through 21.0.5 is vulnerable to insufficiently protecting credentials. Queue Provider credentials are not obfuscated while editing queue provider details. IBM X-Force ID: 247032.

EPSS

Процентиль: 25%

0.00086

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-200