Medium severity5.9NVD Advisory· Published Jan 18, 2023· Updated Jun 17, 2026
CVE-2023-22863
CVE-2023-22863
Description
IBM Robotic Process Automation 20.12.0 through 21.0.2 defaults to HTTP in some RPA commands when the prefix is not explicitly specified in the URL. This could allow an attacker to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 244109.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
220.12.0 - 21.0.2+ 1 more
- (no CPE)range: 20.12.0 - 21.0.2
- (no CPE)range: 20.12.0
Patches
Vulnerability mechanics
References
2- www.ibm.com/support/pages/node/6855837nvdPatchVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/244109nvdVDB EntryVendor Advisory
News mentions
0No linked articles in our index yet.