cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-38319,https://securityvulnerability.io/vulnerability/CVE-2024-38319,IBM Security SOAR Vulnerability Could Allow Execution of Malicious Code,"IBM Security SOAR version 51.0.2.0 contains a vulnerability that permits an authenticated user to execute malicious code from a specially crafted script. This flaw poses serious security risks, as it enables potential attackers to manipulate or compromise the system by leveraging the capabilities of logged-in users. Organizations using this software should evaluate their risk exposure and consider implementing necessary security measures to mitigate the impact of this vulnerability. For further details, refer to IBM's vendor advisory and the X-Force vulnerability database entry.",IBM,Security Soar,7.5,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2024-06-22T18:56:34.854Z,0
CVE-2021-29785,https://securityvulnerability.io/vulnerability/CVE-2021-29785,Information Disclosure Vulnerability in IBM Security SOAR,"The vulnerability in IBM Security SOAR V42 and V43 results from improper enforcement of HTTP Strict Transport Security, which allows a remote attacker to exploit this weakness. By employing man-in-the-middle techniques, the attacker could capture sensitive information communicated between users and the application. Proper configuration and patching are critical to mitigating the risk posed by this vulnerability.",IBM,Security Soar,5.9,MEDIUM,0.0012400000123307109,false,,false,false,false,,,false,false,,2022-01-20T20:15:00.000Z,0