Rewterz Threat Advisory – CVE-2022-35280 – IBM Robotic Process Automation Vulnerability

Rewterz Threat Advisory – Node.js react-native-reanimated module Vulnerability

October 1, 2022

Rewterz Threat Advisory – CVE-2022-20662 – Cisco Duo for macOS Vulnerability

October 1, 2022

Rewterz Threat Advisory – CVE-2022-35280 – IBM Robotic Process Automation Vulnerability

Severity

Medium

Analysis Summary

CVE-2022-35280

IBM Robotic Process Automation 21.0.0, 21.0.1, and 21.0.2 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts.

Impact

Information Disclosure

Indicators Of Compromise

CVE

CVE-2022-35280

Affected Vendors

IBM

Affected Products

IBM Robotic Process Automation 21.0.0
IBM Robotic Process Automation 21.0.1
IBM Robotic Process Automation 21.0.2

Remediation

Refer to IBM Security Advisory for patch, upgrade or suggested workaround information.

IBM Security Advisory

Rewterz Threat Advisory – Node.js react-native-reanimated module Vulnerability

Rewterz Threat Advisory – CVE-2022-20662 – Cisco Duo for macOS Vulnerability

Rewterz Threat Advisory – CVE-2022-35280 – IBM Robotic Process Automation Vulnerability

Severity

Analysis Summary

Impact

Indicators Of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan