Ibm Storage Defender - Resiliency Service

12 CVEs affecting Ibm Storage Defender - Resiliency Service. Latest disclosed: 2025-12-08. Critical: 0, High: 1.

Top CVEs affecting Ibm Storage Defender - Resiliency Service
CVESeverityScorePublishedSummary
CVE-2023-50957High8.02024-02-10IBM Storage Defender - Resiliency Service 2.0 could allow a privileged user to perform unauthorized actions after obtaining encrypted data from clear text key…
CVE-2025-64650Medium6.52025-12-08IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.18 could disclose sensitive user credentials in log files.
CVE-2024-25031Medium6.52024-06-28IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.4 uses an inadequate account lockout setting that could allow an attacker on the network to brute f…
CVE-2024-22313Medium6.22024-02-10IBM Storage Defender - Resiliency Service 2.0 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authe…
CVE-2024-22314Medium5.92025-04-16IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.12 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highl…
CVE-2024-38325Medium5.92025-01-27IBM Storage Defender 2.0.0 through 2.0.7 on-prem defender-sensor-cmd CLI could allow a remote attacker to obtain sensitive information, caused by sending net…
CVE-2024-47119Medium5.92024-12-18IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.9 does not properly validate a certificate which could allow an attacker to spoof a trusted entity…
CVE-2024-38324Medium5.92024-09-25IBM Storage Defender 2.0.0 through 2.0.7 on-prem defender-sensor-cmd CLI does not validate server name during registration and unregistration operations which…
CVE-2024-52361Medium5.72024-12-18IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.9  stores user credentials in plain text which can be read by an authenticated user with access…
CVE-2024-38322Medium5.32024-06-28IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.4 agent username and password error response discrepancy exposes product to brute force enumeration…
CVE-2023-50956Medium4.42024-12-18IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.9 could allow a privileged user to obtain highly sensitive user credentials from secret keys that…
CVE-2024-22312Medium4.42024-02-10IBM Storage Defender - Resiliency Service 2.0 stores user credentials in plain clear text which can be read by a local user. IBM X-Force ID: 278748.