CVE-2022-42442
First published: Mon Oct 24 2022(Updated: )
IBM Robotic Process Automation for Cloud Pak 21.0.1, 21.0.2, 21.0.3, 21.0.4, and 21.0.5 is vulnerable to exposure of the first tenant owner e-mail address to users with access to the container platform. IBM X-Force ID: 238214.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM Robotic Process Automation for Cloud Pak | <21.0.6 | |
| Redhat Openshift Container Platform | ||
| IBM Robotic Process Automation for Cloud Pak | <=< 21.0.6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-42442?
CVE-2022-42442 is a vulnerability in IBM Robotic Process Automation for Cloud Pak that exposes the first tenant owner's email address to users with access to the container platform.
What is the severity of CVE-2022-42442?
CVE-2022-42442 has a severity rating of low (3.3).
Which versions of IBM Robotic Process Automation for Cloud Pak are affected by CVE-2022-42442?
IBM Robotic Process Automation for Cloud Pak versions 21.0.1, 21.0.2, 21.0.3, 21.0.4, and 21.0.5 are affected by CVE-2022-42442.
How can I fix CVE-2022-42442?
To fix CVE-2022-42442, upgrade IBM Robotic Process Automation for Cloud Pak to version 21.0.6 or higher. More details can be found in the IBM support documentation.
Where can I find more information about CVE-2022-42442?
You can find more information about CVE-2022-42442 on the IBM X-Force Exchange website and the IBM support pages.
- collector/nvd-index
- collector/ibm-support
- agent/references
- agent/severity
- agent/author
- agent/tags
- agent/type
- agent/event
- agent/description
- vendor/ibm
- canonical/ibm robotic process automation for cloud pak
- vendor/redhat
- canonical/redhat openshift container platform
- version/ibm robotic process automation for cloud pak/< 21.0.6