Vulnerabilities > IBM > Soar
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-14 | CVE-2024-45670 | Weak Password Recovery Mechanism for Forgotten Password vulnerability in IBM Soar IBM Security SOAR 51.0.1.0 and earlier contains a mechanism for users to recover or change their passwords without knowing the original password, but the user account must be compromised prior to the weak recovery mechanism. | 8.1 |
| 2022-01-20 | CVE-2021-29785 | Unspecified vulnerability in IBM Soar IBM Security SOAR V42 and V43could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. | 5.9 |
| 2021-03-19 | CVE-2020-4635 | Unspecified vulnerability in IBM Soar 40.0 IBM Resilient SOAR 40 and earlier could disclose sensitive information by allowing a user to enumerate usernames. | 5.3 |