CVE-2022-39168 IBM Robotic Process Automation clients are vulnerable to proxy credential exposure in upgrade logs.

This issue occurs when proxies are left in a default state rather than changed to a specific end point when they are used. This leaves the proxies vulnerable to unauthorized access if they are not monitored and secured. This happens when proxies are used without changing their settings to a specific end point. This setting must be changed to an end point after the proxy has been configured. Unauthorized parties will be able to access the upgrade logs of the proxy system through this exposed setting.

CVE-2022-39169

This issue occurs when hosts are left in a default state and not changed to a specific end point. This leaves the hosts vulnerable to unauthorized access if they are not monitored and secured. This happens when hosts are used without changing their settings to a specific end point. This setting must be changed to an end point after the host has been configured. Unauthorized parties will be able to access the logs of the host system through this exposed setting.

Solution: Change the proxy setting to an end point

To fix this issue, change the proxy setting to an end point after the proxy has been configured.

Avoiding Proxy Abuse

A good way to avoid these issues is to set up a proxy on your system so that you can use it to access the upgrade logs. This will prevent unauthorized parties from accessing the upgrade logs of the proxy system.
If you're not ready yet, change this setting to a specific end point after the proxy has been configured.

How to fix this issue?

This issue can be fixed by changing the proxy settings.

How does the vulnerability occur?

The vulnerability occurs when the proxy is configured with a default endpoint. If the proxy is configured with a default endpoint, it leaves itself open to unauthorized access through an exposed setting in the system. This occurs when a proxy is configured without changing its settings to a specific end point.

Timeline

Published on: 09/29/2022 16:15:00 UTC
Last modified on: 10/03/2022 19:18:00 UTC

References

• https://exchange.xforce.ibmcloud.com/vulnerabilities/235422
• https://www.ibm.com/support/pages/node/6824885
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-39168