Known Vulnerabilities for Orchestrator by Uipath
Listed below are 2 of the newest known vulnerabilities associated with "Orchestrator" by "Uipath".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-48814 json | Network-AI is a TypeScript/Node.js multi-agent orchestrator. In versions 5.7.1 and earlier, the MCP SSE server allows unauthe... | Not Provided | 2026-06-17 | 2026-06-18 |
| CVE-2026-47277 json | Runtipi is a personal homeserver orchestrator. In versions 4.9.1 through 4.9.3, Runtipi serves marketplace app logos from fil... | Not Provided | 2026-06-17 | 2026-06-17 |
| CVE-2026-42856 json | Network-AI is a TypeScript/Node.js multi-agent orchestrator. Prior to 5.1.3, the MCP HTTP transport accepts JSON-RPC tools/ca... | Not Provided | 2026-05-11 | 2026-05-11 |
| CVE-2026-42780 json | A directory traversal vulnerability exists in BIG-IP SSL Orchestrator that allows an authenticated attacker with high privile... | Not Provided | 2026-05-13 | 2026-05-13 |
| CVE-2026-40324 json | Hot Chocolate is an open-source GraphQL server. Prior to versions 12.22.7, 13.9.16, 14.3.1, and 15.1.14, Hot Chocolate's recu... | Not Provided | 2026-04-18 | 2026-04-20 |
| CVE-2026-20188 json | Following the initial publication of the Security Advisory about a denial of service (DoS) condition in Cisco Crosswork Netwo... | Not Provided | 2026-05-06 | 2026-05-14 |
| CVE-2026-15574 json | A flaw was found in the vllm-orchestrator-gateway component. The system's production binary logs all incoming authorization h... | Not Provided | 2026-07-13 | 2026-07-13 |
| CVE-2026-15063 json | A flaw was found in the gorch service template, which is part of the trustyai-service-operator. Even when authentication is e... | Not Provided | 2026-07-08 | 2026-07-08 |
| CVE-2026-15044 json | A flaw was found in the TrustyAI Service Operator. When deploying services like gorch or NemoGuardrails, if a specific securi... | Not Provided | 2026-07-08 | 2026-07-09 |
| CVE-2026-10291 json | A security vulnerability has been detected in Enderfga claw-orchestrator up to 3.7.0. The impacted element is the function va... | Not Provided | 2026-06-01 | 2026-06-02 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Uipath | Orchestrator | 2019.4.4 | |||
| Application | Uipath | Orchestrator | 2019.4.3 | |||
| Application | Uipath | Orchestrator | 2019.4.2 | |||
| Application | Uipath | Orchestrator | 2018.4.6 | |||
| Application | Uipath | Orchestrator | 2018.4.5 | |||
| Application | Uipath | Orchestrator | 2018.4.4 | |||
| Application | Uipath | Orchestrator | 2018.4.3 | |||
| Application | Uipath | Orchestrator | 2018.4.2 | |||
| Application | Uipath | Orchestrator | 2018.4.1 | |||
| Application | Uipath | Orchestrator | 2018.3.4 | |||
| Application | Uipath | Orchestrator | 2018.3.2 | |||
| Application | Uipath | Orchestrator | 2018.3.1 | |||
| Application | Uipath | Orchestrator | 2018.2.6 | |||
| Application | Uipath | Orchestrator | 2018.2.4 | |||
| Application | Uipath | Orchestrator | 2018.2.3 | |||
| Application | Uipath | Orchestrator | 2018.2.2 | |||
| Application | Uipath | Orchestrator | 2018.2 | |||
| Application | Uipath | Orchestrator | 2018.1.7 | |||
| Application | Uipath | Orchestrator | 2018.1.6 | |||
| Application | Uipath | Orchestrator | 2018.1.5 |