5.7
CVE-2024-52361
- EPSS 0.07%
- Veröffentlicht 18.12.2024 16:15:13
- Zuletzt bearbeitet 08.08.2025 12:53:47
- Quelle psirt@us.ibm.com
- CVE-Watchlists
- Unerledigt
IBM Storage Defender - Resiliency Service information disclosure
IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.9 stores user credentials in plain text which can be read by an authenticated user with access to the pod.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ibm ≫ Storage Defender Resiliency Service Version >= 2.0 <= 2.0.9
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.07% | 0.215 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| psirt@us.ibm.com | 5.7 | 2.1 | 3.6 |
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
|
CWE-256 Plaintext Storage of a Password
Storing a password in plaintext may result in a system compromise.