IBM Robotic Process Automation As Service
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in IBM Robotic Process Automation As Service.
By the Year
In 2026 there have been 0 vulnerabilities in IBM Robotic Process Automation As Service. Robotic Process Automation As Service did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 3 | 5.40 |
| 2022 | 5 | 5.34 |
It may take a day or so for new Robotic Process Automation As Service vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent IBM Robotic Process Automation As Service Security Vulnerabilities
IBM RPA 21.0.121.0.7/23.0.023.0.1 Sess Token Persistence PostReset
CVE-2023-22591
3.2 - Low
- March 15, 2023
IBM Robotic Process Automation 21.0.1 through 21.0.7 and 23.0.0 through 23.0.1 could allow a user with physical access to the system due to session tokens for not being invalidated after a password reset. IBM X-Force ID: 243710.
Insufficient Session Expiration
IBM RPA 21.0.15 Credential Leak in Queue Provider Config
CVE-2023-25680
6.5 - Medium
- March 15, 2023
IBM Robotic Process Automation 21.0.1 through 21.0.5 is vulnerable to insufficiently protecting credentials. Queue Provider credentials are not obfuscated while editing queue provider details. IBM X-Force ID: 247032.
IBM RPA Client-Side Validation Bypass v21.0.0-21.0.7 & 23.0.0
CVE-2022-46773
6.5 - Medium
- March 15, 2023
IBM Robotic Process Automation 21.0.0 - 21.0.7 and 23.0.0 is vulnerable to client-side validation bypass for credential pools. Invalid credential pools may be created as a result. IBM X-Force ID: 242951.
authentification
IBM RPA 21.0.1/21.0.2 Info Disclosure to Unauthorized Control Sphere
CVE-2022-38710
5.3 - Medium
- November 03, 2022
IBM Robotic Process Automation 21.0.1 and 21.0.2 could disclose sensitive version to an unauthorized control sphere information that could aid in further attacks against the system. IBM X-Force ID: 234292.
Exposure of Sensitive System Information to an Unauthorized Control Sphere
IBM RPA 21.0.x MI-M via Proxy Config Manipulation
CVE-2022-36774
5.3 - Medium
- October 06, 2022
IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 is vulnerable to man in the middle attacks through manipulation of the client proxy configuration. IBM X-Force ID: 233575.
IBM RPA 21.0.0 Click Hijack via Malicious Web Site
CVE-2022-22503
6.1 - Medium
- October 06, 2022
IBM Robotic Process Automation 21.0.0 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 227125.
Clickjacking
IBM Robotic Process Automation 21.0.1 and 21.0.2 could
CVE-2022-33953
4.6 - Medium
- June 24, 2022
IBM Robotic Process Automation 21.0.1 and 21.0.2 could allow a user with psychical access to the system to obtain sensitive information due to insufficiently protected access tokens. IBM X-Force ID: 229198.
Insufficiently Protected Credentials
IBM Robotic Process Automation 21.0.1 and 21.0.2 is vulnerable to cross-site scripting
CVE-2022-22502
5.4 - Medium
- June 24, 2022
IBM Robotic Process Automation 21.0.1 and 21.0.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 227124.
XSS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for IBM Robotic Process Automation As Service or by IBM? Click the Watch button to subscribe.
