Description
IBM Operations Analytics - Log Analysis  and IBM SmartCloud Analytics - Log Analysis uses default passwords default passwords from the manufacturing process for use during the installation process, which could allow an attacker to bypass authentication.
Published: 2026-05-27
Score: 8.4 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

IBM Operations Analytics – Log Analysis deploys default manufacturing passwords during installation. An attacker who discovers a newly installed instance can authenticate without resetting credentials, thereby gaining access to the application. The flaw is a default password bypass and is classified as CWE‑1392. The vulnerability may enable information disclosure; (Based on the description, the attacker could potentially view log data).

Affected Systems

The vulnerability affects IBM Operations Analytics – Log Analysis versions from 1.3.2.0 through 1.3.8.4, as well as the specialized 1.3.7‑TIV‑IOALA‑FP‑signed release. Systems that have not changed the default passwords or have not integrated LDAP authentication are at risk.

Risk and Exploitability

The CVSS score of 8.4 indicates a high severity vulnerability, while the EPSS score of less than 1 % indicates a low probability of exploitation. (Based on the information, exploitation requires remote access to the installation interface; the attacker can log in with the default credentials). For environments where the installation interface is exposed to the Internet or a trusted network, the risk is elevated, even though the vulnerability is not listed in CISA’s KEV catalog.

Generated by OpenCVE AI on June 2, 2026 at 17:35 UTC.

Remediation

Vendor Solution

Principal Product and Version(s)Fix detailsIBM Operations Analytics - Log Analysis version 1.3.2.0, 1.3.3.0, 1.3.5.0, 1.3.5.1, 1.3.5.2, 1.3.5.3, 1.3.6.0, 1.3.6.1, 1.3.6.2, 1.3.7.0, 1.3.7.1, 1.3.7.2, 1.3.8.0, 1.3.8.1, 1.3.8.2, 1.3.8.3, 1.3.8.4IBM strongly recommends addressing the vulnerability now by resetting the password through the GUI or integrating IBM Operations Analytics - Log Analysis with LDAP. Refer to Provision for Updating Default Password During Installation - IBM Operations Analytics Log Analysis for the instructions.For Log Analysis before 1.3.7.0, upgrade to 1.3.7-TIV-IOALA-FP_signed or later before applying this.

OpenCVE Recommended Actions

  • Upgrade to any of the patched releases listed in the advisory (e.g., 1.3.8.4 or later).
  • For installations running versions prior to 1.3.7.0, upgrade to the 1.3.7‑TIV‑IOALA‑FP‑signed release or later before applying this update.
  • Reset all default passwords through the IBM Operations Analytics GUI immediately.
  • Configure LDAP integration to enforce strong authentication and disable default credentials.

Generated by OpenCVE AI on June 2, 2026 at 17:35 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 02 Jun 2026 15:45:00 +0000

Type Values Removed Values Added
First Time appeared Ibm operations Analytics Log Analysis
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:a:ibm:operations_analytics_log_analysis:1.3.2.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:operations_analytics_log_analysis:1.3.3.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:operations_analytics_log_analysis:1.3.5.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:operations_analytics_log_analysis:1.3.5.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:operations_analytics_log_analysis:1.3.5.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:operations_analytics_log_analysis:1.3.5.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:operations_analytics_log_analysis:1.3.6.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:operations_analytics_log_analysis:1.3.6.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:operations_analytics_log_analysis:1.3.7.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:operations_analytics_log_analysis:1.3.7.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:operations_analytics_log_analysis:1.3.7.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:operations_analytics_log_analysis:1.3.8.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:operations_analytics_log_analysis:1.3.8.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:operations_analytics_log_analysis:1.3.8.2:*:*:*:*:*:*:*
cpe:2.3:a:ibm:operations_analytics_log_analysis:1.3.8.3:*:*:*:*:*:*:*
cpe:2.3:a:ibm:operations_analytics_log_analysis:1.3.8.4:*:*:*:*:*:*:*
Vendors & Products Ibm operations Analytics Log Analysis

Thu, 28 May 2026 01:30:00 +0000

Type Values Removed Values Added
First Time appeared Ibm operations Analytics - Log Analysis
Vendors & Products Ibm operations Analytics - Log Analysis

Wed, 27 May 2026 15:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 27 May 2026 14:15:00 +0000

Type Values Removed Values Added
Description IBM Operations Analytics - Log Analysis  and IBM SmartCloud Analytics - Log Analysis uses default passwords default passwords from the manufacturing process for use during the installation process, which could allow an attacker to bypass authentication.
Title IBM Operations Analytics - Log Analysis is affected by Information disclosure due to default passwords not being forced to be changed on post-installation
First Time appeared Ibm
Ibm operations Analytics Log Analysis
Weaknesses CWE-1392
CPEs cpe:2.3:a:ibm:operations_analytics___log_analysis:1.3.2.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:operations_analytics___log_analysis:1.3.3.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:operations_analytics___log_analysis:1.3.5.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:operations_analytics___log_analysis:1.3.6.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:operations_analytics___log_analysis:1.3.7.0:*:*:*:*:*:*:*
cpe:2.3:a:ibm:operations_analytics___log_analysis:1.3.8.0:*:*:*:*:*:*:*
Vendors & Products Ibm
Ibm operations Analytics Log Analysis
References
Metrics cvssV3_1

{'score': 8.4, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

Subscriptions

Ibm Operations Analytics - Log Analysis Operations Analytics Log Analysis Operations Analytics Log Analysis
cve-icon MITRE

Status: PUBLISHED

Assigner: ibm

Published:

Updated: 2026-05-27T14:52:38.627Z

Reserved: 2026-04-28T20:46:39.086Z

Link: CVE-2026-7365

cve-icon Vulnrichment

Updated: 2026-05-27T14:52:26.466Z

cve-icon NVD

Status : Analyzed

Published: 2026-05-27T14:17:35.280

Modified: 2026-06-02T15:40:12.287

Link: CVE-2026-7365

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-02T17:45:06Z

Weaknesses