CVE-2019-4336

Critical

IBM Robotic Process Automation with Automation Anywhere 11 uses an inadequate account lockout setting that could allow a remote attacker to…

ibm·CWE-307·Published 2019-07-01

CVSS

9.8

EPSS

0.02

KEV

Exploits

cve.orgen

196 chars

IBM Robotic Process Automation with Automation Anywhere 11 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 161411.

NVDen

196 chars

IBM Robotic Process Automation with Automation Anywhere 11 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 161411.

IBM Robotic Process Automation with Automation Anywhere versión 11 emplea una configuración de bloqueo de cuenta inadecuada que podría permitir que un atacante remoto descifre credenciales de cuenta por fuerza bruta. ID de IBM X-Force:161411.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	5.0	10.0	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N
3.0	Primary	cve.org	7.5	—	—	CVSS:3.0/PR:N/C:H/AV:N/AC:L/I:N/UI:N/S:U/A:N/RC:C/RL:O/E:U
3.0	Primary	cve.org	7.5	—	—	CVSS:3.0/PR:N/C:H/AV:N/AC:L/I:N/UI:N/S:U/A:N/RC:C/RL:O/E:U
3.0	Secondary	NVD	7.5	3.9	3.6	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
3.1	Primary	NVD	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H