Shodan
Vulnerabilities
Vulnerable Software
Ibm:  >> Storage Defender Resiliency Service  Security Vulnerabilities
CVE-2024-22314
IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.12 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
CVSS Score
5.9
EPSS Score
0.0
Published
2025-04-16
CVE-2024-47119
IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.9 does not properly validate a certificate which could allow an attacker to spoof a trusted entity by interfering in the communication path between the host and client.
CVSS Score
5.9
EPSS Score
0.0
Published
2024-12-18
CVE-2024-52361
IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.9  stores user credentials in plain text which can be read by an authenticated user with access to the pod.
CVSS Score
5.7
EPSS Score
0.0
Published
2024-12-18
CVE-2023-50956
IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.9 could allow a privileged user to obtain highly sensitive user credentials from secret keys that are stored in clear text.
CVSS Score
4.4
EPSS Score
0.0
Published
2024-12-18
CVE-2024-38322
IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.4 agent username and password error response discrepancy exposes product to brute force enumeration. IBM X-Force ID: 294869.
CVSS Score
5.3
EPSS Score
0.001
Published
2024-06-28
CVE-2024-27261
IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.2 could allow a privileged user to install a potentially dangerous tar file, which could give them access to subsequent systems where the package was installed. IBM X-Force ID: 283986.
CVSS Score
6.4
EPSS Score
0.0
Published
2024-04-12
CVE-2024-22312
IBM Storage Defender - Resiliency Service 2.0 stores user credentials in plain clear text which can be read by a local user. IBM X-Force ID: 278748.
CVSS Score
4.4
EPSS Score
0.0
Published
2024-02-10
CVE-2024-22313
IBM Storage Defender - Resiliency Service 2.0 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 278749.
CVSS Score
6.2
EPSS Score
0.0
Published
2024-02-10
CVE-2023-50957
IBM Storage Defender - Resiliency Service 2.0 could allow a privileged user to perform unauthorized actions after obtaining encrypted data from clear text key storage. IBM X-Force ID: 275783.
CVSS Score
8.0
EPSS Score
0.0
Published
2024-02-10


Products
Pricing
Contact Us

Shodan ® - All rights reserved