CVE-2022-38710

IBM Robotic Process Automation 21.0.1 and 21.0.2 could disclose sensitive version to an unauthorized control sphere information that could aid in further attacks against the system. IBM X-Force ID: 234292.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
OR cpe:2.3:a:ibm:robotic_process_automation:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:robotic_process_automation_as_a_service:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:robotic_process_automation_for_cloud_pak:*:*:*:*:*:*:*:*

History

21 Sep 2024, 10:15

Type Values Removed Values Added
CWE CWE-319 CWE-497
Summary (en) IBM Robotic Process Automation 21.0.1 and 21.0.2 could disclose sensitive version information that could aid in further attacks against the system. IBM X-Force ID: 234292. (en) IBM Robotic Process Automation 21.0.1 and 21.0.2 could disclose sensitive version to an unauthorized control sphere information that could aid in further attacks against the system. IBM X-Force ID: 234292.

18 Apr 2024, 04:15

Type Values Removed Values Added
CWE CWE-200 CWE-319
Summary (en) "IBM Robotic Process Automation 21.0.1 and 21.0.2 could disclose sensitive version information that could aid in further attacks against the system. IBM X-Force ID: 234292." (en) IBM Robotic Process Automation 21.0.1 and 21.0.2 could disclose sensitive version information that could aid in further attacks against the system. IBM X-Force ID: 234292.

12 Feb 2024, 19:15

Type Values Removed Values Added
CWE CWE-312 CWE-200
References
  • () https://exchange.xforce.ibmcloud.com/vulnerabilities/234292 -
Summary "IBM Robotic Process Automation 21.0.1 and 21.0.2 could disclose sensitive version information that could aid in further attacks against the system. IBM X-Force ID: 234292." "IBM Robotic Process Automation 21.0.1 and 21.0.2 could disclose sensitive version information that could aid in further attacks against the system. IBM X-Force ID: 234292."

Information

Published : 2022-11-03 20:15

Updated : 2024-09-21 10:15


NVD link : CVE-2022-38710

Mitre link : CVE-2022-38710

CVE.ORG link : CVE-2022-38710


JSON object : View

Products Affected

ibm

  • robotic_process_automation
  • robotic_process_automation_as_a_service
  • robotic_process_automation_for_cloud_pak

microsoft

  • windows
CWE
CWE-497

Exposure of Sensitive System Information to an Unauthorized Control Sphere

CWE-312

Cleartext Storage of Sensitive Information