CVE-2024-40684

IBM Operations Analytics - Log Analysis 1.3.5.0, 1.3.5.1, 1.3.5.2, 1.3.5.3, 1.3.6.0, 1.3.6.1, 1.3.7.0, 1.3.7.1, 1.3.7.2, and 1.3.8.0, 1.3.8.1, 1.3.8.2, 1.3.8.3, 1.3.8.4 IBM SmartCloud Analytics - Log Analysis does not require that users should have strong passwords by default, which makes it easier ...

medium 5.9 CVSS 3.1

Published: May 27, 2026

Modified: Jun 5, 2026

Vendor: Ibm

Product: Operations Analytics Log Analysis

Versions: 1.3.5.0,1.3.5.1,1.3.5.2,1.3.5.3,1.3.6.0,1.3.6.1,1.3.7.0,1.3.7.1,1.3.7.2,1.3.8.0

Description

IBM Operations Analytics - Log Analysis 1.3.5.0, 1.3.5.1, 1.3.5.2, 1.3.5.3, 1.3.6.0, 1.3.6.1, 1.3.7.0, 1.3.7.1, 1.3.7.2, and 1.3.8.0, 1.3.8.1, 1.3.8.2, 1.3.8.3, 1.3.8.4 IBM SmartCloud Analytics - Log Analysis does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts.

References

https://www.ibm.com/support/pages/node/7268536

Related CVEs

CVSS Breakdown

Version	3.1
Score	5.9 / 10
Severity	medium

Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Weakness (CWE)

CWE-521

Affected Product

Vendor	Ibm
Product	Operations Analytics Log Analysis
Versions	1.3.5.0,1.3.5.1,1.3.5.2,1.3.5.3,1.3.6.0,1.3.6.1,1.3.7.0,1.3.7.1,1.3.7.2,1.3.8.0