CVE-2021-29780Improper Input Validation in IBM Resilient Security Orchestration Automation AND Response

CWE-20Improper Input Validation3 documents3 sources
Severity
4.7MEDIUMNVD
EPSS
0.2%
top 59.25%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM Resilient Security Orchestration Automation AND ResponseIBM Resilient Onprem
Timeline
PublishedJul 19
Latest updateMay 24

Description

IBM Resilient OnPrem v41.1 of IBM Security SOAR could allow an authenticated user to perform actions that they should not have access to due to improper input validation. IBM X-Force ID: 203085.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:LExploitability: 1.2 | Impact: 3.4

Affected Packages2 packages

CVEListV5ibm/resilient_onprem41

🔴Vulnerability Details

2
GHSA
GHSA-fq8f-w485-x8g3: IBM Resilient OnPrem v412022-05-24
CVEList
CVE-2021-29780: IBM Resilient OnPrem v412021-07-19
CVE-2021-29780 — Improper Input Validation in IBM | cvebase