CVE-2026-1726

CVE-2026-1726: Multiple Vulnerabilities in IBM Guardium Key Lifecycle Manager

Vendor Ibm
Product Guardium Key Lifecycle Manager
Weakness CWE-269
Published April 22, 2026
Last update June 11, 2026

CVSS base score

What the vulnerability does

01Description

IBM Guardium Key Lifecycle Manager 4.1, 4.1.1, 4.2, 4.2.1, 5.0, and 5.1 enables privilege escalation, allowing unauthorized users to perform administrative operations after being demoted. Attackers could access sensitive data, modify system configurations, or change permissions for other users. The issue undermines administrative controls and could lead to data breaches, system compromise, and loss of trust in the application's security mechanisms.

Key dates

02Disclosure timeline

April 22, 2026 CVE published
June 11, 2026 Record updated