Return to CVE list

CVE-2024-49825

6.3
Medium

CVE-2024-49825

psirt@us.ibm.com
Awaiting Analysis
View on MITREFind on GitHub

Description

IBM Robotic Process Automation and Robotic Process Automation for Cloud Pak 21.0.0 through 21.0.7.20 and 23.0.0 through 23.0.20 does not invalidate session after a logout which could allow an authenticated user to impersonate another user on the system.

Exploits

No known exploits found for this CVE.

Search Exploit-DB

References

psirt@us.ibm.com
https://www.ibm.com/support/pages/node/7230848