Primary

Context

IBM Robotic Process Automation Cryptographic Vulnerability Allowing Data Exposure

Vulnerability

Patched

A vulnerability exists in IBM Robotic Process Automation versions 21.0.0 through 21.0.7.19 and 23.0.0 through 23.0.19. This vulnerability could enable a remote attacker to access sensitive data through certain crypto-analytic attacks.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive data.

Remediation

Users are advised to update to version 23.0.20 or higher. Instructions for upgrading can be found in the IBM Robotic Process Automation documentation. For versions 21.0.0 to 21.0.7.19, refer to the mitigation steps provided in the IBM Security Bulletin.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

1.4

impact

2.5

exploitability

5.9

remediation

8.3

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.4

impact

2.5

exploitability

5.9

remediation

8.3

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IBM Robotic Process Automation Cryptographic Vulnerability Allowing Data Exposure

Vulnerability

Impact

Remediation

Affected Products

IBM Robotic Process Automation

IBM Robotic Process Automation for Cloud Pak

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating