CVE-2022-36115
Last modified
CVE-2022-36115 is a high-severity vulnerability rated 7.1/10 on the CVSS scale. An issue was discovered in Blue Prism Enterprise 6.0 through 7.01. In a misconfigured environment that exposes the Blue Prism Application server, it is possible for an authenticated user to reverse engineer the Blue Prism software and circumvent access controls for unintended functionality. EPSS estimates a 0.77% chance of exploitation in the next 30 days.
Description
An issue was discovered in Blue Prism Enterprise 6.0 through 7.01. In a misconfigured environment that exposes the Blue Prism Application server, it is possible for an authenticated user to reverse engineer the Blue Prism software and circumvent access controls for unintended functionality. An attacker can abuse the CreateProcessAutosave() method to inject their own functionality into a development process. If (upon a warning) a user decides to recover unsaved work by using the last saved version, the malicious code could enter the workflow. Should the process action stages not be fully reviewed before publishing, this could result in the malicious code being run in a production environment.
Metrics
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Ssctech | Blue Prism | >= 6.4, < 7.1 |
References
- https://blueprism.comProduct
- https://portal.blueprism.com/security-vulnerabilities-august-2022Permissions Required, Vendor Advisory
- https://blueprism.comProduct
- https://portal.blueprism.com/security-vulnerabilities-august-2022Permissions Required, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2022-36115?
How severe is CVE-2022-36115?
How do I fix CVE-2022-36115?
Are you affected by CVE-2022-36115?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST