Primary

Context

IBM Robotic Process Automation Privilege Escalation Vulnerability

Vulnerability

A vulnerability in IBM Robotic Process Automation versions 21.0.0 through 21.0.7.18 and 23.0.0 through 23.0.18, as well as in IBM Robotic Process Automation for Cloud Pak within the same version ranges, could enable an authenticated user to execute unauthorized actions with privileged user rights. This issue arises from inadequate validation of client-side security measures.

Impact

Exploitation of this vulnerability could lead to unauthorized actions being performed by an authenticated user with elevated privileges.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

1.4

impact

5.0

exploitability

4.9

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.4

impact

5.0

exploitability

4.9

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IBM Robotic Process Automation Privilege Escalation Vulnerability

Vulnerability

Impact

Affected Products

IBM Robotic Process Automation

IBM Robotic Process Automation for Cloud Pak

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating