CVE-2022-41740 MEDIUM

CVE-2022-41740: IBM Robotic Process Automation information disclosure

Vendor Ibm
Product Robotic Process Automation
Published January 5, 2023
Last update April 10, 2025

CVSS base score

4.6/10
Attack vector Physical
Attack complexity Low
Privileges required None
User interaction None
Confidentiality High
Integrity None

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

What the vulnerability does

01Description

IBM Robotic Process Automation 20.12 through 21.0.6 could allow an attacker with physical access to the system to obtain highly sensitive information from system memory. IBM X-Force ID: 238053.

Key dates

02Disclosure timeline

January 5, 2023 CVE published
April 10, 2025 Record updated