Home / Security updates / UIPS-2024-001- Security Advisory – UiPath Orchestrator – Improper Queue Permissions
UIPS-2024-001- Security Advisory – UiPath Orchestrator – Improper Queue Permissions
Security updates detail rendered from /security-updates/upd_0dc8249b32cdcb16.
Overview
| ID | upd_0dc8249b32cdcb16 |
| Collection | Security Updates |
| Provider | SafeBase |
| Company | UiPath |
| URL | - |
| Counts | - |
| Updated | - |
Raw record
| Field | Value |
|---|---|
| id | upd_0dc8249b32cdcb16 |
| providerId | safebase |
| organizationId | org_33d000fdc8a62017 |
| trustCenterId | tc_7d7ee18589030c52 |
| title | UIPS-2024-001- Security Advisory – UiPath Orchestrator – Improper Queue Permissions |
| message | **Title: UIPS-2024-001- Security Advisory – UiPath Orchestrator – Improper Queue Permissions** Publish Date: March 11, 2024 Version: 1.0 General Information Affected Versions: Automation Cloud Orchestrator Orchestrator Standalone Versions: 2021.10.0 - 2021.10.14 2022.4.0 - 2022.4.12 2022.10.0 - 2022.10.9 2023.4.0 – 2023.4.5 2023.10.0 – 2023.10.2 Automation Suite Versions: 2021.10.0 - 2021.10.12 2022.4.0 - 2022.4.10 2022.10.0 - 2022.10.9 2023.4.0 - 2023.4.4 2023.10.0 – 2023.10.1 CVSS Score: 6.5 Details: An issue was discovered with the permissions for exporting queues. An authenticated user who has access to one or more queues within a folder may be able to export data from all queues in their tenant instead of only the queues they have permissions. This issue does not allow access to other tenants or other organizations. Release Notes: [2023.10.3 Standalone Orchestrator](https://docs.uipath.com/orchestrator/standalone/2023.10/release-notes/2023-10-3) [2023.10.2 Automation Suite |
| url | - |
| publishedAt | 2025-11-21 |
| source | {
"field": "statuspage/public/compliance-update",
"category": "vulnerabilities"
} |
| company | {
"id": "org_33d000fdc8a62017",
"name": "UiPath",
"domains": [
"trust.uipath.com",
"uipath.com"
]
} |
| trust_center | {
"id": "tc_7d7ee18589030c52",
"name": "UiPath",
"url": "https://trust.uipath.com",
"host": "trust.uipath.com"
} |
| provider | {
"id": "safebase",
"name": "SafeBase"
} |
| links | {
"self": "/v1/security-updates/upd_0dc8249b32cdcb16",
"company": "/v1/companies/org_33d000fdc8a62017",
"trust_center": "/v1/trust-centers/tc_7d7ee18589030c52",
"provider": "/v1/providers/safebase"
} |
Get this page with API
Rendered from the bluedoor Trust Centers API. Reproduce it:
GET https://api.bluedoor.sh/trust-centers/v1/security-updates/upd_0dc8249b32cdcb16JSON