CVE-2024-40682

Summary

IBM SmartCloud Analytics - Log Analysis 1.3.7.0, 1.3.7.1, 1.3.7.2, 1.3.8.0, 1.3.8.1, and 1.3.8.2 could allow a local user to cause a denial of service due to improper validation of specified type of input.

Affected Software

VendorProductVersion RangeStatus
IBMSmartCloud Analytics Log Analysis1.3.7.0affected
IBMSmartCloud Analytics Log Analysis1.3.7.11affected
IBMSmartCloud Analytics Log Analysis13.7.2affected
IBMSmartCloud Analytics Log Analysis1.3.8.0affected
IBMSmartCloud Analytics Log Analysis1.3.8.1affected
IBMSmartCloud Analytics Log Analysis1.3.8.2affected

Weaknesses

  • CWE-1287: CWE-1287 Improper Validation of Specified Type of Input

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References