Soar Qradar Plugin App

soar_qradar_plugin_app

Vendor: Ibm • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-36114 1Ibm 1Soar Qradar Plugin App Dec 1, 2025 Aug 20, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 IBM QRadar SOAR Plugin App 1.0.0 through 5.6.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arb...Show more IBM QRadar SOAR Plugin App 1.0.0 through 5.6.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system.Show less
CVE-2023-38263 1Ibm 1Soar Qradar Plugin App Nov 21, 2024 Feb 2, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 IBM SOAR QRadar Plugin App 1.0 through 5.0.3 could allow an authenticated user to perform unauthorized actions due to improper access controls. IBM X-Force ID: 260577.
CVE-2023-38020 1Ibm 1Soar Qradar Plugin App Nov 21, 2024 Feb 2, 2024 N/A· v4 4.3 MEDIUM· v3 N/A· v2 IBM SOAR QRadar Plugin App 1.0 through 5.0.3 could allow an authenticated user to manipulate output written to log files. IBM X-Force ID: 260576.
CVE-2023-38019 1Ibm 1Soar Qradar Plugin App Nov 21, 2024 Feb 2, 2024 N/A· v4 6.5 MEDIUM· v3 N/A· v2 IBM SOAR QRadar Plugin App 1.0 through 5.0.3 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbit...Show more IBM SOAR QRadar Plugin App 1.0 through 5.0.3 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 260575.Show less