Privilege Escalation Vulnerability in IBM Robotic Process Automation with Automation Anywhere 11

Privilege Escalation Vulnerability in IBM Robotic Process Automation with Automation Anywhere 11

CVE-2019-4298 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

IBM Robotic Process Automation with Automation Anywhere 11 uses a high privileged PostgreSQL account for database access which could allow a local user to perform actions they should not have privileges to execute. IBM X-Force ID: 160764.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.