CVE-2024-38320

Name of the Vulnerable Software and Affected Versions IBM Storage Protect for Virtual Environments: Data Protection for VMware and Storage Protect Backup-Archive Client versions 8.1.0.0 through 8.1.23.0

Description The issue is related to the use of weaker than expected cryptographic algorithms, which could allow an attacker to decrypt highly sensitive information. This could potentially permit a remote attacker to gain unauthorized access to protected information.

Recommendations For versions 8.1.0.0 through 8.1.23.0, consider disabling the use of the weaker cryptographic algorithms until a patch or update is available that addresses this issue. Restrict access to sensitive information to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.