Primary

Context

IBM SmartCloud Analytics - Log Analysis Client-Side Security Bypass Vulnerability

Vulnerability

Patched

A vulnerability in IBM SmartCloud Analytics - Log Analysis versions 1.3.7.0, 1.3.7.1, 1.3.7.2, 1.3.8.0, 1.3.8.1, and 1.3.8.2 allows local, authenticated attackers to bypass client-side security enforcement, potentially leading to unauthorized data manipulation.

Impact

Exploitation of this vulnerability could result in unauthorized data manipulation.

Remediation

Users can upgrade to IBM Operations Analytics - Log Analysis version 1.3.8.2 Interim Fix 1. For versions prior to 1.3.8.2, upgrade to 1.3.8-TIV-IOALA-FP2 before installing this fix.

Added: Jul 23, 2025, 12:27 PM

Updated: Jul 23, 2025, 12:27 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IBM SmartCloud Analytics - Log Analysis Client-Side Security Bypass Vulnerability

Vulnerability

Impact

Remediation

Affected Products

IBM SmartCloud Analytics - Log Analysis

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating