Medium Severity

Security Bulletin: IBM Robotic Process Automation could allow a user with physical access to create an API request modified to create additional objects (CVE-2022-22434)

Share this post:

IBM Robotic Process Automation could allow a user with physical access to create an API request modified to create additional objects

CVE(s): CVE-2022-22434

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM Robotic Process Automation 21.0.2
IBM Robotic Process Automation 21.0.1
IBM Robotic Process Automation as a Service All

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6579959
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/224159

More stories

Security Bulletin: Samba for IBM i is vulnerable to attacker obtaining sensitive information due to a memory leak with SMB1 requests (CVE-2022-32742)

August 17, 2022 | Medium Severity

Samba for IBM i is vulnerable to an attacker obtaining sensitive information due to a memory leak handling SMB1 requests as described in the vulnerability details section. IBM i has addressed the vulnerability in Samba with a fix as described in the remediation/fixes section. ...read more


Security Bulletin: A security vulnerability has been fixed in IBM Security Verify Governance, Identity Manager virtual appliance component (CVE-2022-21496)

August 16, 2022 | Medium Severity

IBM Security Verify Governance, Identity Manager virtual appliance component has addressed the following vulnerability. ...read more