Privilege Escalation Vulnerability in IBM Robotic Process Automation with Automation Anywhere 11
CVE-2019-4298 · HIGH Severity
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
IBM Robotic Process Automation with Automation Anywhere 11 uses a high privileged PostgreSQL account for database access which could allow a local user to perform actions they should not have privileges to execute. IBM X-Force ID: 160764.
Learn more about our Cis Benchmark Audit For Microsoft Sql Server.