CVE-2024-41751
MEDIUMIBM SmartCloud Analytics - Log Analysis <1.3.8.2 - Auth Bypass
Title source: llmDescription
IBM SmartCloud Analytics - Log Analysis 1.3.7.0, 1.3.7.1, 1.3.7.2, 1.3.8.0, 1.3.8.1, and 1.3.8.2 could allow a local, authenticated attacker to bypass client-side enforcement of security to manipulate data.
Scores
CVSS v3
5.5
EPSS
0.0002
EPSS Percentile
5.6%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-602
Status
published
Products (6)
ibm/smartcloud_analytics_log_analysis
1.3.7.0
ibm/smartcloud_analytics_log_analysis
1.3.7.1
ibm/smartcloud_analytics_log_analysis
1.3.7.2
ibm/smartcloud_analytics_log_analysis
1.3.8.0
ibm/smartcloud_analytics_log_analysis
1.3.8.1
ibm/smartcloud_analytics_log_analysis
1.3.8.2
Published
Jul 23, 2025
Tracked Since
Feb 18, 2026