CVE-2024-38320

📊 5.9 MEDIUM⚡ 0.0%🎯 0 exploits

📅 Published Jan 27, 2025

📋 Status: Analyzed

IBM Storage Protect for Virtual Environments: Data Protection for VMware and Storage Protect Backup-Archive Client 8.1.0.0 through 8.1.23.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.

CVSS v3.1 • [email protected]

🎯 Affected Products & Systems

10 product configurations affected

Filter by type:

Type	Vendor	Product	Version Range	Status	CPE String
📱App	ibm	storage protect for virtual environments	≥ 8.1.0.0 ∧ < 8.1.24.0	Vulnerable	cpe:2.3:a:ibm:storage_protect_for_virtual_environments::::::::
💻OS	linux	linux kernel	All versions	Not Vulnerable	cpe:2.3:o:linux:linux_kernel:-:::::::*
💻OS	microsoft	windows	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows:-:::::::*
📱App	ibm	storage protect	≥ 8.1.0.0 ∧ < 8.1.24.0	Vulnerable	cpe:2.3:a:ibm:storage_protect::::::::
💻OS	apple	macos	All versions	Not Vulnerable	cpe:2.3:o:apple:macos:-:::::::*
💻OS	hp	hp-ux	All versions	Not Vulnerable	cpe:2.3:o:hp:hp-ux:-:::::::*
💻OS	ibm	aix	All versions	Not Vulnerable	cpe:2.3:o:ibm:aix:-:::::::*
💻OS	linux	linux kernel	All versions	Not Vulnerable	cpe:2.3:o:linux:linux_kernel:-:::::::*
💻OS	microsoft	windows	All versions	Not Vulnerable	cpe:2.3:o:microsoft:windows:-:::::::*
💻OS	oracle	solaris	All versions	Not Vulnerable	cpe:2.3:o:oracle:solaris:-::::::-:

📱

ibm / storage protect for virtual environments

Application

Vulnerable

Version: ≥ 8.1.0.0 ∧ < 8.1.24.0

CPE:

cpe:2.3:a:ibm:storage_protect_for_virtual_environments:*:*:*:*:*:*:*:*

💻

linux / linux kernel

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

💻

microsoft / windows

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

📱

ibm / storage protect

Application

Vulnerable

Version: ≥ 8.1.0.0 ∧ < 8.1.24.0

CPE:

cpe:2.3:a:ibm:storage_protect:*:*:*:*:*:*:*:*

💻

apple / macos

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*

💻

hp / hp-ux

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:hp:hp-ux:-:*:*:*:*:*:*:*

💻

ibm / aix

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:ibm:aix:-:*:*:*:*:*:*:*

💻

linux / linux kernel

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

💻

microsoft / windows

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

💻

oracle / solaris

Operating System

Safe

Version: All versions

CPE:

cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:-:*

10 products•scroll for more

Metrics

5.9 MEDIUMCVSS v3.1[email protected]

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Attack Vector:

NETWORK

Complexity:

HIGH

Privileges:

NONE

User Interaction:

NONE

Confidentiality:

HIGH

Integrity:

NONE

Availability:

NONE

Scope:

UNCHANGED

🔍 Technical Details

Analysis Status

Analyzed

CVSS Details

5.9 (MEDIUM)v3.1

Source: [email protected]

EPSS Details

0.0% (Minimal)4.9th percentile

Last updated: Nov 1, 2025

Exploitation probability within 30 days

Published Date

Jan 27, 2025 (9 months ago)

Last Modified

Aug 18, 2025 (2 months ago)

Security Weaknesses1

CWE-327

References3

NVDgeneralgeneral