Vulnerability Details CVE-2024-38325
IBM Storage Defender 2.0.0 through 2.0.7 on-prem defender-sensor-cmd CLI
could allow a remote attacker to obtain sensitive information, caused by sending network requests over an insecure channel. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 4.2%
CVSS Severity
CVSS v3 Score 5.9
Products affected by CVE-2024-38325
-
cpe:2.3:a:ibm:storage_defender:2.0.0
-
cpe:2.3:a:ibm:storage_defender:2.0.4