Input Validation Flaw in IBM Resilient SOAR Affects System Integrity
CVE-2019-4579

4.3MEDIUM

Key Information:

Vendor: IBM
Status: Resilient Soar
Vendor: CVE Published:; 28 August 2020

Summary

The input validation vulnerability in IBM Resilient SOAR 38 allows attackers to exploit incomplete blacklisting mechanisms. This failure enables malicious actors to bypass essential application controls, potentially leading to unauthorized access and manipulation of critical system data. By circumventing these protections, the integrity of the system may be significantly compromised, affecting overall security posture and operational reliability.

Affected Version(s)

Resilient SOAR 38

References

https://www.ibm.com/support/pages/node/6323783

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/167236

vdb-entryx_refsource_XF

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 28, 2020
Vulnerability Reserved
Jan 3, 2019