Vulnerability in Ibm Robotic Process Automation For Cloud Pak

CVE-2022-43844

IBM Robotic Process Automation for Cloud Pak 20.12 through 21.0.3 is vulnerable to broken access control. A user is not correctly redirected to the platform log out screen when logging out of IBM RPA for Cloud Pak. IBM X-Force ID: 2390…

EPSS: 0.003 (56.5th percentile) — read the EPSS interpretation.

Affected products

Ibm Robotic Process Automation For Cloud Pak — versions 20.12

Weakness classification (CWE)

CWE-613 — Insufficient Session Expiration

References

www.ibm.com/support/pages/node/6852663 (vendor-advisory)
exchange.xforce.ibmcloud.com/vulnerabilities/239081 (vdb-entry)