📦 Storage Defender Resiliency Service

This vulnerability in IBM Storage Defender - Resiliency Service 2.0 allows privileged users to access encrypted data from clear text key storage and perform unauthorized actions. It affects organizati...

IBM Storage Defender - Resiliency Service versions 2.0.0 through 2.0.18 write sensitive user credentials to log files. This allows attackers with access to log files to obtain authentication credentia...

IBM Storage Defender - Resiliency Service versions 2.0.0 through 2.0.12 use weak cryptographic algorithms, potentially allowing attackers to decrypt sensitive information. This affects organizations u...

IBM Storage Defender - Resiliency Service versions 2.0.0 through 2.0.9 fail to properly validate SSL/TLS certificates, allowing attackers to perform man-in-the-middle attacks by spoofing trusted entit...

IBM Storage Defender - Resiliency Service versions 2.0.0 through 2.0.9 store user credentials in plain text within pod files. This allows authenticated users with pod access to read sensitive credenti...

IBM Storage Defender - Resiliency Service versions 2.0.0 through 2.0.9 store secret keys containing user credentials in clear text. This allows privileged users to access sensitive authentication info...

IBM Storage Defender - Resiliency Service versions 2.0.0 through 2.0.4 have a username and password error response discrepancy that allows attackers to determine whether a username exists in the syste...