Product
ibm soar
6 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2024-45670
CVE-2024-48952
CVE-2024-38319
CVE-2023-3997
CVE-2021-29785
CVE-2020-4635
< 51.0.2.0
IBM Security SOAR 51.0.1.0 and earlier contains a mechanism for users to recover or change their passwords without knowing the ori
< 7.5.0
An issue was discovered in Logpoint before 7.5.0. SOAR uses a static JWT secret key to generate tokens that allow access to SOAR A
<= 51.0.2.0
IBM Security SOAR 51.0.2.0 could allow an authenticated user to execute malicious code loaded from a specially crafted script. IB
< 6.1.0.131
Splunk SOAR versions lower than 6.1.0 are indirectly affected by a potential vulnerability accessed through the user’s terminal.
>= 42.0.7058 and < 43.1.49
IBM Security SOAR V42 and V43could allow a remote attacker to obtain sensitive information, caused by the failure to properly enab
all versions
IBM Resilient SOAR 40 and earlier could disclose sensitive information by allowing a user to enumerate usernames.