CVE-2024-40682
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-07-23
Last updated on: 2025-08-06
Assigner: IBM Corporation
Description
Description
IBM SmartCloud Analytics - Log Analysis 1.3.7.0, 1.3.7.1, 1.3.7.2, 1.3.8.0, 1.3.8.1, and 1.3.8.2 could allow a local user to cause a denial of service due to improper validation of specified type of input.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| ibm | smartcloud_analytics_log_analysis | 1.3.7.0 |
| ibm | smartcloud_analytics_log_analysis | 1.3.7.1 |
| ibm | smartcloud_analytics_log_analysis | 1.3.7.2 |
| ibm | smartcloud_analytics_log_analysis | 1.3.8.0 |
| ibm | smartcloud_analytics_log_analysis | 1.3.8.1 |
| ibm | smartcloud_analytics_log_analysis | 1.3.8.2 |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-1287 | The product receives input that is expected to be of a certain type, but it does not validate or incorrectly validates that the input is actually of the expected type. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in IBM SmartCloud Analytics - Log Analysis versions 1.3.7.0 through 1.3.8.2 allows a local user to cause a denial of service by providing improperly validated input of a specific type.
How can this vulnerability impact me? :
The vulnerability can impact you by allowing a local user to cause a denial of service, which means the affected system or application could become unavailable or stop functioning properly.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70