CVE-2024-40685

Name of the Vulnerable Software and Affected Versions IBM Operations Analytics – Log Analysis versions 1.3.5.0 through 1.3.8.3 IBM SmartCloud Analytics – Log Analysis versions 1.3.5.0 through 1.3.8.3

Description The software is susceptible to a cross-site request forgery (CSRF) condition. Successful exploitation could allow an attacker to coerce a legitimate user into performing actions they did not intend to authorize.

Recommendations Update IBM Operations Analytics – Log Analysis to a version later than 1.3.8.3. Update IBM SmartCloud Analytics – Log Analysis to a version later than 1.3.8.3.