Storage Defender@* Security Vulnerabilities and Issues — Storage Defender@* CVE List

Lucene search

IbmStorage Defender*

4 matches found

CVE•added 2024/06/28 7:15 p.m.•48 views

CVE-2024-25031

IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.4 uses an inadequate account lockout setting that could allow an attacker on the network to brute force account credentials. IBM X-Force ID: 281678.

6.5CVSS6.3AI score0.00052EPSS

CVE•added 2024/09/25 1:15 a.m.•48 views

CVE-2024-38324

IBM Storage Defender 2.0.0 through 2.0.7 on-prem defender-sensor-cmd CLI does not validate server name during registration and unregistration operations which could expose sensitive information to an attacker with access to the system.

6.5CVSS5.6AI score0.00077EPSS

CVE•added 2025/01/27 4:15 p.m.•48 views

CVE-2024-38325

IBM Storage Defender 2.0.0 through 2.0.7 on-prem defender-sensor-cmd CLI could allow a remote attacker to obtain sensitive information, caused by sending network requests over an insecure channel. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle t...

7.5CVSS6.2AI score0.00021EPSS

CVE•added 2024/04/12 1:15 p.m.•44 views

CVE-2024-27261

IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.2 could allow a privileged user to install a potentially dangerous tar file, which could give them access to subsequent systems where the package was installed. IBM X-Force ID: 283986.

6.8CVSS6.2AI score0.00028EPSS