IBM Storage Protect for Virtual Environments: Data Protection for VMware and Storage Protect Backup-Archive Client 8.1.0.0 through 8.1.23.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Mon, 18 Aug 2025 18:15:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
Hp
Hp hp-ux
Ibm aix
Ibm storage Protect
Ibm storage Protect For Virtual Environments
Linux
Linux linux Kernel
Microsoft
Microsoft windows
Oracle
Oracle solaris
CPEs cpe:2.3:a:ibm:storage_protect:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:storage_protect_for_virtual_environments:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:o:hp:hp-ux:-:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:-:*
Vendors & Products Apple
Apple macos
Hp
Hp hp-ux
Ibm aix
Ibm storage Protect
Ibm storage Protect For Virtual Environments
Linux
Linux linux Kernel
Microsoft
Microsoft windows
Oracle
Oracle solaris

Mon, 27 Jan 2025 18:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Mon, 27 Jan 2025 15:45:00 +0000

Type Values Removed Values Added
Description IBM Storage Protect for Virtual Environments: Data Protection for VMware and Storage Protect Backup-Archive Client 8.1.0.0 through 8.1.23.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
Title IBM Storage Protect for Virtual Environments: Data Protection for VMware information disclosure
First Time appeared Ibm
Ibm storage Protect Backup Archive Client
Ibm storage Protect For Virtual Enviornments Data Protection For Vmware
Weaknesses CWE-327
CPEs cpe:2.3:a:ibm:storage_protect_backup_archive_client:8.1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:storage_protect_backup_archive_client:8.1.23.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:storage_protect_for_virtual_enviornments_data_protection_for_vmware:8.1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:storage_protect_for_virtual_enviornments_data_protection_for_vmware:8.1.23.0:*:*:*:*:*:*:*
Vendors & Products Ibm
Ibm storage Protect Backup Archive Client
Ibm storage Protect For Virtual Enviornments Data Protection For Vmware
References
Metrics cvssV3_1

{'score': 5.9, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: ibm

Published:

Updated: 2025-01-27T17:58:26.315Z

Reserved: 2024-06-13T21:43:46.667Z

Link: CVE-2024-38320

cve-icon Vulnrichment

Updated: 2025-01-27T16:47:43.164Z

cve-icon NVD

Status : Analyzed

Published: 2025-01-27T16:15:30.973

Modified: 2025-08-18T18:05:36.460

Link: CVE-2024-38320

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.