Ibm Resilient Security Orchestration Automation And Response — known CVE vulnerabilities
Every CVE whose affected-product data names Ibm Resilient Security Orchestration Automation And Response, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2020-4633 — CVSS 8.8 (high): IBM Resilient SOAR V38.0 could allow a remote attacker to execute arbitrary code on the system, caused by formula injection due to improper…
CVE-2021-29802 — CVSS 7.5 (high): IBM Security SOAR performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses…
CVE-2021-20566 — CVSS 7.5 (high): IBM Resilient SOAR V38.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive…
CVE-2021-29704 — CVSS 7.5 (high): IBM Security SOAR uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
CVE-2020-4636 — CVSS 7.2 (high): IBM Resilient OnPrem 38.2 could allow a privileged user to inject malicious commands through Python3 scripting. IBM X-Force ID: 185503.
CVE-2021-29780 — CVSS 4.7 (medium): IBM Resilient OnPrem v41.1 of IBM Security SOAR could allow an authenticated user to perform actions that they should not have access to…
CVE-2021-20567 — CVSS 4.4 (medium): IBM Resilient SOAR V38.0 could allow a local privileged attacker to obtain sensitive information due to improper or nonexisting…
CVE-2020-4864 — CVSS 4.3 (medium): IBM Resilient SOAR V38.0 could allow an attacker on the internal net work to provide the server with a spoofed source IP address. IBM…
CVE-2019-4533 — CVSS 4.3 (medium): IBM Resilient SOAR V38.0 users may experience a denial of service of the SOAR Platform due to a insufficient input validation. IBM X-Force…
CVE-2019-4579 — CVSS 4.3 (medium): IBM Resilient SOAR 38 uses incomplete blacklisting for input validation which allows attackers to bypass application controls resulting in…