Smartcloud Analytics Log Analysis Security Vulnerabilities and Issues — Smartcloud Analytics Log Analysis CVE List

Lucene search

IbmSmartcloud Analytics Log Analysis

10 matches found

CVE•added 2019/11/22 4:15 p.m.•57 views

CVE-2019-4215

IBM SmartCloud Analytics 1.3.1 through 1.3.5 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks a...

6.1CVSS6.3AI score0.00293EPSS

CVE•added 2019/11/22 4:15 p.m.•46 views

CVE-2019-4243

IBM SmartCloud Analytics 1.3.1 through 1.3.5 allows unauthorized disclosure of information like accessing solrconfig.xml and could allow an attacker to perform disruptive administrator tasks. IBM X-Force ID: 159517.

5.1CVSS4.6AI score0.00085EPSS

CVE•added 2014/04/24 10:55 a.m.•45 views

CVE-2013-6738

Cross-site scripting (XSS) vulnerability in IBM SmartCloud Analytics Log Analysis 1.1 and 1.2 before 1.2.0.0-CSI-SCALA-IF0003 allows remote attackers to inject arbitrary web script or HTML via an invalid query parameter in a response from an OAuth authorization endpoint.

4.3CVSS7.4AI score0.00478EPSS

CVE•added 2019/11/22 4:15 p.m.•43 views

CVE-2019-4216

IBM SmartCloud Analytics 1.3.1 through 1.3.5 is vulnerable to possible host header injection attack that could lead to HTTP cache poisoning or firewall bypass. IBM X-Force ID: 159187.

4.9CVSS5.1AI score0.0009EPSS

CVE•added 2019/11/22 4:15 p.m.•41 views

CVE-2019-4214

IBM SmartCloud Analytics 1.3.1 through 1.3.5 does not set the secure attribute on authorization tokens or session cookies. This could allow an attacker to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 159185.

4.3CVSS4AI score0.00154EPSS

CVE•added 2019/12/10 4:15 p.m.•30 views

CVE-2019-4244

IBM SmartCloud Analytics 1.3.1 through 1.3.5 could allow a remote attacker to gain unauthorized information and unrestricted control over Zookeeper installations due to missing authentication. IBM X-Force ID: 159518.

9.1CVSS8.8AI score0.00669EPSS

CVE•added 2025/07/23 12:15 p.m.•7 views

CVE-2024-40686

IBM SmartCloud Analytics - Log Analysis 1.3.7.0, 1.3.7.1, 1.3.7.2, 1.3.8.0, 1.3.8.1, and 1.3.8.2 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This could allow an attacker to conduct various attacks against the vulnerable system, including cross...

6.1CVSS6.2AI score0.00026EPSS

CVE•added 2025/07/23 12:15 p.m.•6 views

CVE-2024-40682

IBM SmartCloud Analytics - Log Analysis 1.3.7.0, 1.3.7.1, 1.3.7.2, 1.3.8.0, 1.3.8.1, and 1.3.8.2 could allow a local user to cause a denial of service due to improper validation of specified type of input.

6.2CVSS6.1AI score0.00022EPSS

CVE•added 2025/07/23 12:15 p.m.•6 views

CVE-2024-41750

IBM SmartCloud Analytics - Log Analysis 1.3.7.0, 1.3.7.1, 1.3.7.2, 1.3.8.0, 1.3.8.1, and 1.3.8.2 could allow a local, authenticated attacker to bypass client-side enforcement of security to manipulate data.

5.5CVSS6.1AI score0.00016EPSS

CVE•added 2025/07/23 12:15 p.m.•6 views

CVE-2024-41751

5.5CVSS6.2AI score0.00016EPSS