CVE-2022-30616

Опубликовано: 01 авг. 2022

Источник: nvd

CVSS3: 8

CVSS3: 7.2

EPSS Низкий

Описание

IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 could allow a privileged user to elevate their privilege to platform administrator through manipulation of APIs. IBM X-Force ID: 227978.

Ссылки

https://exchange.xforce.ibmcloud.com/vulnerabilities/227978
VDB Entry
Vendor Advisory
https://www.ibm.com/support/pages/node/6608430
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/227978
VDB Entry
Vendor Advisory
https://www.ibm.com/support/pages/node/6608430
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ibm:robotic_process_automation:*:*:*:*:*:*:*:*

Версия от 21.0.0 (включая) до 21.0.3 (исключая)

EPSS

Процентиль: 28%

0.00095

Низкий

8 High

CVSS3

7.2 High

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-2229-567x-2rpg

CVSS3: 7.2

github

почти 3 года назад

IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 could allow a privileged user to elevate their privilege to platform administrator through manipulation of APIs. IBM X-Force ID: 227978.

EPSS

Процентиль: 28%

0.00095

Низкий

8 High

CVSS3

7.2 High

CVSS3

Дефекты

NVD-CWE-noinfo