Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.1
CVE-2024-45670
- EPSS 0.08%
- Published 14.11.2024 12:15:18
- Last modified 16.11.2024 00:24:57
IBM Security SOAR 51.0.1.0 and earlier contains a mechanism for users to recover or change their passwords without knowing the original password, but the user account must be compromised prior to the weak recovery mechanism.
8.8
CVE-2024-38319
- EPSS 0.23%
- Published 22.06.2024 19:15:09
- Last modified 10.03.2025 18:35:02
IBM Security SOAR 51.0.2.0 could allow an authenticated user to execute malicious code loaded from a specially crafted script. IBM X-Force ID: 294830.
5.9
CVE-2021-29785
- EPSS 0.22%
- Published 20.01.2022 20:15:07
- Last modified 21.11.2024 06:01:48
IBM Security SOAR V42 and V43could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using ma...
5.3
CVE-2020-4635
- EPSS 0.16%
- Published 19.03.2021 16:15:12
- Last modified 21.11.2024 05:33:01
IBM Resilient SOAR 40 and earlier could disclose sensitive information by allowing a user to enumerate usernames.
1