{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2026-1726","assignerOrgId":"9a959283-ebb5-44b6-b705-dcc2bbced522","state":"PUBLISHED","assignerShortName":"ibm","dateReserved":"2026-01-30T22:03:35.181Z","datePublished":"2026-04-22T23:42:05.901Z","dateUpdated":"2026-04-25T03:55:44.611Z"},"containers":{"cna":{"providerMetadata":{"orgId":"9a959283-ebb5-44b6-b705-dcc2bbced522","shortName":"ibm","dateUpdated":"2026-04-22T23:42:05.901Z"},"title":"Multiple Vulnerabilities in IBM Guardium Key Lifecycle Manager","problemTypes":[{"descriptions":[{"lang":"en","cweId":"CWE-269","description":"CWE-269 Improper Privilege Management","type":"CWE"}]}],"affected":[{"vendor":"IBM","product":"Guardium Key Lifecycle Manager","versions":[{"status":"affected","version":"4.1.0","versionType":"semver"},{"status":"affected","version":"4.1.1","versionType":"semver"},{"status":"affected","version":"4.2.0","versionType":"semver"},{"status":"affected","version":"4.2.1","versionType":"semver"},{"status":"affected","version":"5.0.0","versionType":"semver"},{"status":"affected","version":"5.1.0","versionType":"semver"}],"cpes":["cpe:2.3:a:ibm:guardium_key_lifecycle_manager:4.1:*:*:*:*:*:*:*","cpe:2.3:a:ibm:guardium_key_lifecycle_manager:4.1.0:*:*:*:*:*:*:*","cpe:2.3:a:ibm:guardium_key_lifecycle_manager:4.1.1:*:*:*:*:*:*:*","cpe:2.3:a:ibm:guardium_key_lifecycle_manager:4.2:*:*:*:*:*:*:*","cpe:2.3:a:ibm:guardium_key_lifecycle_manager:4.2.0:*:*:*:*:*:*:*","cpe:2.3:a:ibm:guardium_key_lifecycle_manager:4.2.1:*:*:*:*:*:*:*","cpe:2.3:a:ibm:guardium_key_lifecycle_manager:5.0:*:*:*:*:*:*:*","cpe:2.3:a:ibm:guardium_key_lifecycle_manager:5.0.0:*:*:*:*:*:*:*","cpe:2.3:a:ibm:guardium_key_lifecycle_manager:5.1:*:*:*:*:*:*:*","cpe:2.3:a:ibm:guardium_key_lifecycle_manager:5.1.0:*:*:*:*:*:*:*"]}],"descriptions":[{"lang":"en","value":"IBM Guardium Key Lifecycle Manager 4.1, 4.1.1, 4.2, 4.2.1, 5.0, and 5.1","supportingMedia":[{"type":"text/html","base64":false,"value":"

IBM Guardium Key Lifecycle Manager 4.1, 4.1.1, 4.2, 4.2.1, 5.0, and 5.1

"}]}],"references":[{"url":"https://www.ibm.com/support/pages/node/7268697","tags":["vendor-advisory","patch"]}],"solutions":[{"lang":"en","value":"IBM encourages customers to update their systems promptly. \n\nPrincipal Product and Version(s)Remediation/FixesIBM Guardium Key Lifecycle Manager (GKLM) v4.11. Download IBM Guardium Key Lifecycle Manager  https://www.ibm.com/docs/en/gklm/5.x?topic=software-download-instructions","supportingMedia":[{"type":"text/html","base64":false,"value":"

IBM encourages customers to update their systems promptly. 

Principal Product and Version(s)Remediation/Fixes
IBM Guardium Key Lifecycle Manager (GKLM) v4.1

1. Download IBM Guardium Key Lifecycle Manager (GKLM) v5.1 (the product is available for download through IBM Passport Advantage)

2. Apply 5.1.0-ISS-GKLM-FP0001

IBM Guardium Key Lifecycle Manager (GKLM) v4.1.1
IBM Guardium Key Lifecycle Manager (GKLM) v4.2
IBM Guardium Key Lifecycle Manager (GKLM) v4.2.1
IBM Guardium Key Lifecycle Manager (GKLM) v5.0
IBM Guardium Key Lifecycle Manager (GKLM) v5.1Apply 5.1.0-ISS-GKLM-FP0001

Download instruction - https://www.ibm.com/docs/en/gklm/5.x?topic=software-download-instructions

"}]}],"x_generator":{"engine":"ibm-cvegen"}},"adp":[{"metrics":[{"cvssV3_1":{"scope":"UNCHANGED","version":"3.1","baseScore":4.8,"attackVector":"NETWORK","baseSeverity":"MEDIUM","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N","integrityImpact":"LOW","userInteraction":"NONE","attackComplexity":"HIGH","availabilityImpact":"NONE","privilegesRequired":"NONE","confidentialityImpact":"LOW"}},{"other":{"type":"ssvc","content":{"timestamp":"2026-04-24T00:00:00+00:00","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"total"}],"role":"CISA Coordinator","version":"2.0.3","id":"CVE-2026-1726"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2026-04-25T03:55:44.611Z"}}]}}