Authentication Bypass Vulnerability in IBM Operations Analytics and SmartCloud Analytics
CVE-2026-7365

8.4HIGH

Key Information:

Vendor: IBM
Status: Operations Analytics - Log Analysis
Vendor: CVE Published:; 27 May 2026

What is CVE-2026-7365?

IBM Operations Analytics and SmartCloud Analytics contain a vulnerability where default passwords from the manufacturing process are employed during installation. This security flaw enables attackers to bypass authentication mechanisms, potentially leading to unauthorized access and exposure of sensitive data.

Affected Version(s)

Operations Analytics - Log Analysis 1.3.2.0

Operations Analytics - Log Analysis 1.3.3.0

Operations Analytics - Log Analysis 1.3.5.0, 1.3.5.1, 1.3.5.2, 1.3.5.3

References

https://www.ibm.com/support/pages/node/7272268

vendor-advisorypatch

CVSS V3.1

Score:

8.4

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 27, 2026
Vulnerability Reserved
Apr 28, 2026

CVE-2026-7365 Data

JSON