CVE-2023-38718

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Sep 20, 2023

Updated: Sep 22, 2023

CWE ID 200

Summary

CVE-2023-38718 is a vulnerability affecting IBM Robotic Process Automation (RPA) versions 21.0.0 through 21.0.7.8. This issue allows unauthorized users to access sensitive information, including RPA scripts, workflows, and related data, posing a significant risk to data confidentiality. The vulnerability, identified by IBM X-Force with ID 261606, can potentially lead to serious consequences if exploited. IBM urges users to upgrade to the latest version or apply the relevant patches to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM Robotic Process Automation

Affected Vendors

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sGycjW
https://www.cve.org/CVERecord?id=CVE-2023-38718
https://nvd.nist.gov/vuln/detail/CVE-2023-38718

Back to Vulnerability Database