CVE-2023-35901

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Jul 17, 2023
Updated: Jul 26, 2023
CWE ID 287

Summary

CVE-2023-35901 is a vulnerability affecting IBM Robotic Process Automation versions 21.0.0 through 21.0.7.6 and 23.0.0 through 23.0.6. This issue involves a bypass of client-side validation, enabling unauthorized users to input invalid changes or values in certain fields. IBM X-Force has identified this issue and assigned it the ID 259380. This vulnerability could potentially lead to significant data manipulation and requires immediate attention from IBM RPA users to apply the necessary patches.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • IBM Robotic Process Automation
  • Ibm Robotic Process Automation For Cloud Pak

Affected Vendors

  • IBM Corporation

Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future

Note: This is just a basic overview providing quick insights into CVE-2023-35901 information. Gain full access to comprehensive CVE data, third party vulnerabilities, compromised credentials and more with Recorded Future
  • Gain complete coverage of your cyber, third party, and physical attack surface
  • Proactively mitigate threats before they turn into costly attacks
  • Make fast, effective, data-driven decisions