返回 CVE 瀏覽器

CVE-2019-4336

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.0170%

EPSS Percentile0.94th

Published2019年7月1日

Last Modified2024年11月21日

Vulnerability Description

IBM Robotic Process Automation with Automation Anywhere 11 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 161411.

Affected Platforms (CPE)

📦

Ibm

Robotic Process Automation With Automation Anywhere

>= 11.0.0.0 and < 11.0.0.5

References & Advisories

🔗 http://www.ibm.com/support/docview.wss?uid=ibm10884848

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/161411

🔗 http://www.ibm.com/support/docview.wss?uid=ibm10884848

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/161411

相關漏洞威脅

CVE-2018-15478.0

IBM Robotic Process Automation with Automation Anywhere 10.0 could allow a remote attacker to execute arbitrary code on the system...

CVE-2019-42987.1

IBM Robotic Process Automation with Automation Anywhere 11 uses a high privileged PostgreSQL account for database access which cou...

CVE-2020-49016.5

IBM Robotic Process Automation with Automation Anywhere 11.0 could allow an attacker on the network to obtain sensitive informatio...

CVE-2018-18766.2

IBM Robotic Process Automation with Automation Anywhere 11 could under certain cases, display the password in a Control Room log f...