Lucene search
K

6 matches found

Vulnrichment
Vulnrichment
added 2026/05/27 1:48 p.m.11 views

CVE-2024-40684 IBM Operations Analytics - Log Analysis is affected by Weak Password Policy and Inadequate Account Lockout Mechanism

IBM Operations Analytics - Log Analysis 1.3.5.0, 1.3.5.1, 1.3.5.2, 1.3.5.3, 1.3.6.0, 1.3.6.1, 1.3.7.0, 1.3.7.1, 1.3.7.2, and 1.3.8.0, 1.3.8.1, 1.3.8.2, 1.3.8.3, 1.3.8.4 IBM SmartCloud Analytics - Log Analysis does not require that users should have strong passwords by default, which makes it easi...

5.9CVSS5.8AI score0.0036EPSS
Exploits0References1
CVE
CVE
added 2026/05/27 1:48 p.m.10 views

CVE-2024-40684

CVE-2024-40684 affects IBM Operations Analytics – Log Analysis (versions 1.3.5.0–1.3.8.4). The root cause is weaknesses in backend authentication and session management that allow weak password policy enforcement by default, facilitating potential account compromise. Impact is described as a lack...

9.8CVSS5.8AI score0.0036EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/03 7:46 p.m.3 views

CVE-2025-36363

IBM DevOps Plan 3.0.0 through 3.0.5 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials...

5.9CVSS6AI score0.00252EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/03/03 7:46 p.m.15 views

CVE-2025-36363

CVE-2025-36363 affects IBM DevOps Plan 3.0.0–3.0.5. The root cause is an inadequate account lockout setting, potentially allowing a remote attacker to brute-force credentials. Documented impact is exposure of confidentiality with no integrity/availability impact stated; CVSS metrics indicate high...

7.5CVSS6AI score0.00252EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/02/02 1:15 a.m.4 views

CVE-2023-50326

IBM PowerSC 1.3, 2.0, and 2.1 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 275107...

7.5CVSS5.8AI score0.00663EPSS
Exploits0References2
OSV
OSV
added 2017/02/01 8:59 p.m.1 views

CVE-2016-5964

IBM Security Privileged Identity Manager Virtual Appliance version 2.0.2 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials...

9.8CVSS5.8AI score0.01596EPSS
Exploits0References2
Rows per page
Query Builder