Missing Authentication Vulnerability in IBM Robotic Process Automation
CVE-2019-4337
5.3MEDIUM
Key Information:
- Vendor
- IBM
- Vendor
- CVE Published:
- 1 July 2019
Summary
IBM Robotic Process Automation with Automation Anywhere 11 is susceptible to a vulnerability that permits unauthorized access to Ignite nodes. This weakness arises from insufficient authentication mechanisms, allowing attackers to potentially gather sensitive information. To mitigate the risk, users are urged to review their configurations and apply best practices for securing their environments.
Affected Version(s)
Robotic Process Automation with Automation Anywhere 11
References
CVSS V3.1
Score:
5.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved