CVE-2026-5065

EUVD-2026-32423
IBM Controller 11.0.1, 11.1.0, 11.1.1, and 11.1.2 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
ibmCNA
8.8 HIGH
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
ibmcontroller
11.0.1 ≤
𝑥
≤ 26.0.0.5
CNA
ibmcontroller
11.1.0
CNA
ibmcontroller
11.1.1
CNA
ibmcontroller
11.1.2
CNA
Common Weakness Enumeration
References
https://www.ibm.com/support/pages/node/7273004