IBM RPA Weak Password Enforcement 21.0.021.0.2 Enables Credential Compromise
CVE-2022-35280 Published on August 10, 2022

IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 230634.

NVD

Products Associated with CVE-2022-35280

Want to know whenever a new CVE is published for IBM Robotic Process Automation? stack.watch will email you.

IBM Robotic Process Automation

Affected Versions

IBM Robotic Process Automation:

Version 21.0.0 is affected.
Version 21.0.1 is affected.
Version 21.0.2 is affected.

Exploit Probability

EPSS

0.21%

Percentile

42.41%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

IBM RPA Weak Password Enforcement 21.0.021.0.2 Enables Credential CompromiseCVE-2022-35280 Published on August 10, 2022

Products Associated with CVE-2022-35280

Affected Versions

Exploit Probability

IBM RPA Weak Password Enforcement 21.0.021.0.2 Enables Credential Compromise
CVE-2022-35280 Published on August 10, 2022