IBM Security Bulletin: Passwords are unencrypted locally in IBM Robotic Process Automation with Automation Anywhere (CVE-2018-1877)

Oct 31, 2018 9:01 am EDT

Categorized: Medium Severity

Share this post:

IBM Robotic Process Automation could store highly sensitive information in the form of unencrypted passwords that would be available to a local user.

CVE(s): CVE-2018-1877

Affected product(s) and affected version(s):

Affected IBM Robotic Process Automation with Automation AnywhereAffected Versions
IBM Robotic Process Automation with Automation Anywhere11.0

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10735973
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/151713



from IBM Product Security Incident Response Team https://ift.tt/2qsxJWJ