Vulnerabilities > IBM > Resilient Security Orchestration Automation AND Response > 38.2

DATE	CVE	VULNERABILITY TITLE	RISK
2021-08-23	CVE-2021-29704	Use of a Broken or Risky Cryptographic Algorithm vulnerability in IBM Resilient Security Orchestration Automation and Response 38.0/38.2 IBM Security SOAR uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. network low complexity ibm CWE-327	5.0
2021-07-19	CVE-2021-29780	Improper Input Validation vulnerability in IBM Resilient Security Orchestration Automation and Response 38.0/38.2 IBM Resilient OnPrem v41.1 of IBM Security SOAR could allow an authenticated user to perform actions that they should not have access to due to improper input validation. network low complexity ibm CWE-20	6.5
2020-10-16	CVE-2020-4636	Command Injection vulnerability in IBM Resilient Security Orchestration Automation and Response 38.2 IBM Resilient OnPrem 38.2 could allow a privileged user to inject malicious commands through Python3 scripting. network low complexity ibm CWE-77	6.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.