CVE-2020-4635

CVE-2020-4635 affects IBM Resilient (SOAR) prior to v40.1, where a user could enumerate usernames and disclose partial confidential information. IBM’s security bulletin confirms the issue and its CVSS foundations, with a fix implemented in Resilient v40.1 that adds rate-limiting and fuzzing to de...