IBM Robotic Process Automation for Cloud Pak 21.0.0 through 21.0.7.4 and 23.0.0 through 23.0.5 is vulnerable to disclosing server version information which may be used to determine software vulnerabilities at the operating system level. IBM X-Force ID: 259368.
References
| Link | Resource |
|---|---|
| https://exchange.xforce.ibmcloud.com/vulnerabilities/259368 | VDB Entry Vendor Advisory |
| https://www.ibm.com/support/pages/node/7010895 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
History
28 Jul 2023, 15:51
| Type | Values Removed | Values Added |
|---|---|---|
| References | (MISC) https://www.ibm.com/support/pages/node/7010895 - Patch, Vendor Advisory | |
| References | (MISC) https://exchange.xforce.ibmcloud.com/vulnerabilities/259368 - VDB Entry, Vendor Advisory | |
| CPE | cpe:2.3:a:ibm:robotic_process_automation:*:*:*:*:*:*:*:* cpe:2.3:a:ibm:robotic_process_automation_as_a_service:*:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* cpe:2.3:a:ibm:robotic_process_automation_for_cloud_pak:*:*:*:*:*:*:*:* cpe:2.3:a:redhat:openshift:-:*:*:*:*:*:*:* |
|
| First Time |
Redhat openshift
Microsoft Ibm robotic Process Automation As A Service Redhat Ibm robotic Process Automation For Cloud Pak Ibm Microsoft windows Ibm robotic Process Automation |
|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.3 |
| CWE | NVD-CWE-noinfo |
19 Jul 2023, 01:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2023-07-19 01:15
Updated : 2023-12-10 15:14
NVD link : CVE-2023-35900
Mitre link : CVE-2023-35900
CVE.ORG link : CVE-2023-35900
JSON object : View
Products Affected
ibm
- robotic_process_automation_as_a_service
- robotic_process_automation_for_cloud_pak
- robotic_process_automation
redhat
- openshift
microsoft
- windows
CWE