Soar
This hub aggregates every CVE we track for Soar, a product in the security products space. Use it to gauge the current risk picture and drill into individual advisories.
6
CVEs tracked
0
Critical
2
High
0
In CISA KEV
Severity distribution
MEDIUM4HIGH2
Monthly trend
0
0
0
0
2
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 6 most recently published vulnerabilities affecting Soar.
- CVE-2024-45670IBM Security SOAR weak password recovery mechanism5.6
- CVE-2024-48952An issue was discovered in Logpoint before 7.5.0. SOAR uses a static JWT secret key to generate tokens that allow access to SOAR API endpoints without authentication. This static key vulnerability ...6.4
- CVE-2024-38319IBM Security SOAR code execution7.5
- CVE-2023-3997Unauthenticated Log Injection In Splunk SOAR8.6
- CVE-2021-29785IBM Security SOAR V42 and V43could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this v...5.9
- CVE-2020-4635IBM Resilient SOAR 40 and earlier could disclose sensitive information by allowing a user to enumerate usernames.5.3
Product normalization is registry-driven with AI assist and human review. How it works