Lucene search

K
IbmResilient Security Orchestration Automation And Response

10 matches found

CVE
CVE
added 2021/08/23 4:15 p.m.39 views

CVE-2021-29704

IBM Security SOAR uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.

7.5CVSS7.3AI score0.00087EPSS
CVE
CVE
added 2021/08/23 4:15 p.m.38 views

CVE-2021-29802

IBM Security SOAR performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses.

7.5CVSS7.5AI score0.00099EPSS
CVE
CVE
added 2020/12/11 3:15 p.m.33 views

CVE-2020-4633

IBM Resilient SOAR V38.0 could allow a remote attacker to execute arbitrary code on the system, caused by formula injection due to improper input validation.

9CVSS8.9AI score0.02628EPSS
CVE
CVE
added 2020/10/16 5:15 p.m.32 views

CVE-2020-4636

IBM Resilient OnPrem 38.2 could allow a privileged user to inject malicious commands through Python3 scripting. IBM X-Force ID: 185503.

8.2CVSS6.6AI score0.00671EPSS
CVE
CVE
added 2020/08/28 3:15 p.m.31 views

CVE-2019-4533

IBM Resilient SOAR V38.0 users may experience a denial of service of the SOAR Platform due to a insufficient input validation. IBM X-Force ID: 165589.

4.3CVSS4.4AI score0.00191EPSS
CVE
CVE
added 2020/08/28 3:15 p.m.30 views

CVE-2019-4579

IBM Resilient SOAR 38 uses incomplete blacklisting for input validation which allows attackers to bypass application controls resulting in direct impact to the system and data integrity. IBM X-Force ID: 167236.

4.3CVSS4.5AI score0.00133EPSS
CVE
CVE
added 2021/06/16 5:15 p.m.30 views

CVE-2021-20567

IBM Resilient SOAR V38.0 could allow a local privileged attacker to obtain sensitive information due to improper or nonexisting encryption.IBM X-Force ID: 199239.

4.4CVSS4.2AI score0.00011EPSS
CVE
CVE
added 2021/07/19 4:15 p.m.30 views

CVE-2021-29780

IBM Resilient OnPrem v41.1 of IBM Security SOAR could allow an authenticated user to perform actions that they should not have access to due to improper input validation. IBM X-Force ID: 203085.

6.5CVSS4.5AI score0.00189EPSS
CVE
CVE
added 2020/10/29 4:15 p.m.26 views

CVE-2020-4864

IBM Resilient SOAR V38.0 could allow an attacker on the internal net work to provide the server with a spoofed source IP address. IBM X-Force ID: 190567.

4.3CVSS4.4AI score0.00077EPSS
CVE
CVE
added 2021/06/16 5:15 p.m.26 views

CVE-2021-20566

IBM Resilient SOAR V38.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 199238.

7.5CVSS7.2AI score0.00087EPSS