exploitDog

CVE-2024-40685

Опубликовано: 04 фев. 2026

Источник: nvd

CVSS3: 4.3

EPSS Низкий

Описание

IBM Operations Analytics – Log Analysis versions 1.3.5.0 through 1.3.8.3 and IBM SmartCloud Analytics – Log Analysis are vulnerable to a cross-site request forgery (CSRF) vulnerability that could allow an attacker to trick a trusted user into performing unauthorized actions.

Ссылки

https://www.ibm.com/support/pages/node/7256429

EPSS

Процентиль: 2%

0.00013

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-352

Связанные уязвимости

GHSA-4gxg-c5q9-vqvm

CVSS3: 4.3

github

3 дня назад

IBM Operations Analytics – Log Analysis versions 1.3.5.0 through 1.3.8.3 and IBM SmartCloud Analytics – Log Analysis are vulnerable to a cross-site request forgery (CSRF) vulnerability that could allow an attacker to trick a trusted user into performing unauthorized actions.

EPSS

Процентиль: 2%

0.00013

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-352