Description
IBM Robotic Process Automation 21.0.0 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 227125.
CVSS breakdown
CVSS 3.0
Integrity
Low
Confidentiality
Low
User Interaction
Required
Privileges Required
None
Availability
None
Scope
Changed
Attack Vector
Network
Attack Complexity
Low
RL
O
RC
Changed
E
Unchanged
Affected products
- ibm / robotic_process_automation21.0.0 – 21.0.0