Vulnerabilities > IBM > Storage Defender

DATE CVE VULNERABILITY TITLE RISK
2024-09-25 CVE-2024-38324 Improper Certificate Validation vulnerability in IBM Storage Defender 2.0.0/2.0.4
IBM Storage Defender 2.0.0 through 2.0.7 on-prem defender-sensor-cmd CLI does not validate server name during registration and unregistration operations which could expose sensitive information to an attacker with access to the system.
network
low complexity
ibm CWE-295
6.5
2024-06-28 CVE-2024-25031 Unspecified vulnerability in IBM Storage Defender 2.0.0/2.0.4
IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.4 uses an inadequate account lockout setting that could allow an attacker on the network to brute force account credentials.
low complexity
ibm
6.5