Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-08202
HistoryJan 23, 2022 - 12:00 a.m.

IBM Security SOAR Information Disclosure Vulnerability (CNVD-2022-08202)

2022-01-2300:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
ibm security soar
information disclosure
vulnerability
http strict transport security
man-in-the-middle
cyber threats

EPSS

0.001

Percentile

48.1%

JSON

IBM Security SOAR, formerly Resilient, is an IBM product designed to help your security team confidently address cyber threats, automate with intelligence, and collaborate with consistency.An information disclosure vulnerability exists in IBM Security SOAR due to the product’s failure to properly enable HTTP Strict Transport Security feature. An attacker could exploit this vulnerability to gain access to sensitive information using man-in-the-middle techniques.

Related

nvd 1
ibm 1
prion 1
cvelist 1
cve 1
nvd
nvd
CVE-2021-29785
2022-01-20 20:15:07
ibm
ibm
Security Bulletin: IBM® Security SOAR could be vulnerable to a downgrade attack because of missing Strict-Transport-Security headers for some endpoints (CVE-2021-29785).
2022-01-19 22:14:49
prion
prion
Information disclosure
2022-01-20 20:15:00
cvelist
cvelist
CVE-2021-29785
2022-01-20 19:40:12
cve
cve
CVE-2021-29785
2022-01-20 20:15:07

EPSS

0.001

Percentile

48.1%

JSON
Related for CNVD-2022-08202
nvd1ibm1prion1cvelist1cve1