CVE-2024-38325

Name of the Vulnerable Software and Affected Versions IBM Storage Defender versions 2.0.0 through 2.0.7

Description The issue is related to the IBM Storage Defender's Defender Sensor component, which has incorrect data encryption. This could allow a remote attacker to obtain sensitive information by exploiting the vulnerability using man-in-the-middle techniques. The vulnerability is caused by sending network requests over an insecure channel.

Recommendations For IBM Storage Defender versions 2.0.0 through 2.0.7, consider disabling the defender-sensor-cmd CLI until a patch is available to prevent remote attackers from obtaining sensitive information. Restrict access to the on-prem defender-sensor-cmd to minimize the risk of exploitation. Avoid using the affected CLI to send network requests until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.