Code Execution Vulnerability in IBM Resilient SOAR V38.0
CVE-2021-20527

6MEDIUM

Key Information:

Vendor: IBM
Status: Resilient Onprem
Vendor: CVE Published:; 19 April 2021

Summary

IBM Resilient SOAR V38.0 contains a vulnerability that permits a privileged user to craft malicious scripts that can be executed by other users. This flaw can lead to unauthorized actions and potentially compromise the security of affected systems.

Affected Version(s)

Resilient OnPrem 38.0

References

https://www.ibm.com/support/pages/node/6444747

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/198759

vdb-entryx_refsource_XF

CVSS V3.1

Score:

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

High

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 19, 2021
Vulnerability Reserved
Dec 17, 2020