Cryptographic Vulnerability in IBM Resilient SOAR
CVE-2021-20566

5.9MEDIUM

Key Information:

Vendor: IBM
Status: Resilient Soar
Vendor: CVE Published:; 16 June 2021

Summary

IBM Resilient SOAR V38.0 employs cryptographic algorithms that are weaker than expected, which may allow unauthorized users to decrypt sensitive data, potentially exposing confidential information to attackers. This flaw could compromise the integrity of the information stored within the application, putting users at risk. For more detailed information, refer to IBM's official documentation and X-Force ID 199238.

Affected Version(s)

Resilient SOAR 38

References

https://www.ibm.com/support/pages/node/6464043

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/199238

vdb-entryx_refsource_XF

CVSS V3.1

Score:

5.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 16, 2021
Vulnerability Reserved
Dec 17, 2020