Known Vulnerabilities for Orchestrator by Uipath
Listed below are 2 of the newest known vulnerabilities associated with "Orchestrator" by "Uipath".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-42856 json | Network-AI is a TypeScript/Node.js multi-agent orchestrator. Prior to 5.1.3, the MCP HTTP transport accepts JSON-RPC tools/ca... | Not Provided | 2026-05-11 | 2026-05-11 |
| CVE-2026-42780 json | A directory traversal vulnerability exists in BIG-IP SSL Orchestrator that allows an authenticated attacker with high privile... | Not Provided | 2026-05-13 | 2026-05-13 |
| CVE-2026-40324 json | Hot Chocolate is an open-source GraphQL server. Prior to versions 12.22.7, 13.9.16, 14.3.1, and 15.1.14, Hot Chocolate's recu... | Not Provided | 2026-04-18 | 2026-04-20 |
| CVE-2026-39305 json | PraisonAI is a multi-agent teams system. Prior to 1.5.113, the Action Orchestrator feature contains a Path Traversal vulnerab... | Not Provided | 2026-04-07 | 2026-04-07 |
| CVE-2026-34590 json | Postiz is an AI social media scheduling tool. Prior to version 2.21.4, the POST /webhooks/ endpoint for creating webhooks use... | Not Provided | 2026-04-02 | 2026-04-03 |
| CVE-2026-33528 json | GoDoxy is a reverse proxy and container orchestrator for self-hosters. Prior to version 0.27.5, the file content API endpoint... | Not Provided | 2026-03-26 | 2026-03-27 |
| CVE-2026-20188 json | Following the initial publication of the Security Advisory about a denial of service (DoS) condition in Cisco Crosswork Netwo... | Not Provided | 2026-05-06 | 2026-05-14 |
| CVE-2026-10291 json | A security vulnerability has been detected in Enderfga claw-orchestrator up to 3.7.0. The impacted element is the function va... | Not Provided | 2026-06-01 | 2026-06-02 |
| CVE-2026-10281 json | A weakness has been identified in Enderfga claw-orchestrator up to 3.5.5. This affects the function EmbeddedServer of the fil... | Not Provided | 2026-06-01 | 2026-06-01 |
| CVE-2026-3118 json | A security flaw was identified in the Orchestrator Plugin of Red Hat Developer Hub (Backstage). The issue occurs due to insuf... | Not Provided | 2026-02-25 | 2026-05-05 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Uipath | Orchestrator | 2019.4.4 | |||
| Application | Uipath | Orchestrator | 2019.4.3 | |||
| Application | Uipath | Orchestrator | 2019.4.2 | |||
| Application | Uipath | Orchestrator | 2018.4.6 | |||
| Application | Uipath | Orchestrator | 2018.4.5 | |||
| Application | Uipath | Orchestrator | 2018.4.4 | |||
| Application | Uipath | Orchestrator | 2018.4.3 | |||
| Application | Uipath | Orchestrator | 2018.4.2 | |||
| Application | Uipath | Orchestrator | 2018.4.1 | |||
| Application | Uipath | Orchestrator | 2018.3.4 | |||
| Application | Uipath | Orchestrator | 2018.3.2 | |||
| Application | Uipath | Orchestrator | 2018.3.1 | |||
| Application | Uipath | Orchestrator | 2018.2.6 | |||
| Application | Uipath | Orchestrator | 2018.2.4 | |||
| Application | Uipath | Orchestrator | 2018.2.3 | |||
| Application | Uipath | Orchestrator | 2018.2.2 | |||
| Application | Uipath | Orchestrator | 2018.2 | |||
| Application | Uipath | Orchestrator | 2018.1.7 | |||
| Application | Uipath | Orchestrator | 2018.1.6 | |||
| Application | Uipath | Orchestrator | 2018.1.5 |