Home / Security updates / Legal - Trust and Security - Security Advisories (UIPS-2022-002)
Legal - Trust and Security - Security Advisories (UIPS-2022-002)
Security updates detail rendered from /security-updates/upd_8c2801800cf51a28.
Overview
| ID | upd_8c2801800cf51a28 |
| Collection | Security Updates |
| Provider | SafeBase |
| Company | UiPath |
| URL | - |
| Counts | - |
| Updated | - |
Raw record
| Field | Value |
|---|---|
| id | upd_8c2801800cf51a28 |
| providerId | safebase |
| organizationId | org_33d000fdc8a62017 |
| trustCenterId | tc_7d7ee18589030c52 |
| title | Legal - Trust and Security - Security Advisories (UIPS-2022-002) |
| message | **Title: UIPS-2022-002- Security Advisory - UiPath Orchestrator - Exposure of Sensitive Information** Publish Date: December 12, 2022 Version: 1.1 General Information Affected Versions: Orchestrator prior to 2020.10* Orchestrator 2020.10. to 2020.10.17* Orchestrator 2021.10 to 2021.10.8* Orchestrator 2022.4 to 2022.4.4* Orchestrator 2022.10* Orchestrator within Automation Suite 2021.10, 2022.4 and 2022.10* Automation Cloud Orchestrator* *These versions are only affected under specific conditions provided in the details. CVSS Score: 4.9 Details: If Orchestrator is configured to use a 3rd party storage bucket, 3rd party credential store, or external deployment repository that requires credentials, a vulnerability exists that may allow an attacker with privileged access to audit logs to retrieve the credentials used by Orchestrator to connect to the 3rd party resource. Audit logs are tenant specific and user permissions from one tenant do not allow for access to another tenant’s au |
| url | - |
| publishedAt | 2025-11-21 |
| source | {
"field": "statuspage/public/compliance-update",
"category": "vulnerabilities"
} |
| company | {
"id": "org_33d000fdc8a62017",
"name": "UiPath",
"domains": [
"trust.uipath.com",
"uipath.com"
]
} |
| trust_center | {
"id": "tc_7d7ee18589030c52",
"name": "UiPath",
"url": "https://trust.uipath.com",
"host": "trust.uipath.com"
} |
| provider | {
"id": "safebase",
"name": "SafeBase"
} |
| links | {
"self": "/v1/security-updates/upd_8c2801800cf51a28",
"company": "/v1/companies/org_33d000fdc8a62017",
"trust_center": "/v1/trust-centers/tc_7d7ee18589030c52",
"provider": "/v1/providers/safebase"
} |
Get this page with API
Rendered from the bluedoor Trust Centers API. Reproduce it:
GET https://api.bluedoor.sh/trust-centers/v1/security-updates/upd_8c2801800cf51a28JSON