CVE-2026-1726EPSS p9.2%

CVE-2026-1726CVE-2026-1726

ibm / guardium_key_lifecycle_manager

Description

IBM Guardium Key Lifecycle Manager 4.1, 4.1.1, 4.2, 4.2.1, 5.0, and 5.1 enables privilege escalation, allowing unauthorized users to perform administrative operations after being demoted. Attackers could access sensitive data, modify system configurations, or change permissions for other users. The issue undermines administrative controls and could lead to data breaches, system compromise, and loss of trust in the application's security mechanisms.

Scoring

CVSS 4.8 ()
VectorCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
EPSS0.19% probability of exploitation · percentile 9.2% · 2026-06-18T12:00:27Z
Last modified2026-06-11
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.