ibm
8,286 tracked vulnerabilities.
CVE-2025-36376
MEDIUM
IBM Security QRadar EDR 3.12-3.12.23 - Auth Bypass
Feb 17, 2026
CVSS 6.3
EPSS 0.00
CVE-2025-14289
MEDIUM
IBM webMethods Integration Server 12.0 - XSS
Feb 17, 2026
CVSS 5.4
EPSS 0.00
CVE-2025-13691
HIGH
IBM DataStage 5.1.2-5.3.0 - Info Disclosure
Feb 17, 2026
CVSS 8.1
EPSS 0.00
CVE-2025-36243
MEDIUM
IBM Concert 1.0.0-2.1.0 - Authenticated Server-Side Request Forgery
Feb 17, 2026
CVSS 5.4
EPSS 0.00
CVE-2025-33130
MEDIUM
IBM DB2 Merge Backup 12.1.0.0 - Buffer Overflow
Feb 17, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-33124
MEDIUM
IBM DB2 Merge Backup 12.1.0.0 - Authenticated Denial of Service via Buffer Size Calculation
Feb 17, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-33101
MEDIUM
IBM Concert 1.0.0-2.1.0 - Info Disclosure
Feb 17, 2026
CVSS 5.9
EPSS 0.00
CVE-2025-33089
MEDIUM
IBM Concert 1.0.0-2.1.0 - Auth Bypass
Feb 17, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-27904
MEDIUM
IBM DB2 Recovery Expert 5.5 IF002 - CSRF
Feb 17, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-27903
MEDIUM
IBM DB2 Recovery Expert 5.5 IF002 - Info Disclosure
Feb 17, 2026
CVSS 5.9
EPSS 0.00
CVE-2025-27901
MEDIUM
IBM DB2 Recovery Expert 5.5 IF002 - HTTP Header Injection
Feb 17, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-27900
MEDIUM
IBM DB2 Recovery Expert 5.5 IF002 - Open Redirect
Feb 17, 2026
CVSS 6.8
EPSS 0.00
CVE-2025-27899
MEDIUM
IBM DB2 Recovery Expert 5.5 IF002 - Info Disclosure
Feb 17, 2026
CVSS 5.3
EPSS 0.00
CVE-2025-27898
MEDIUM
IBM DB2 Recovery Expert 5.5 IF002 - Auth Bypass
Feb 17, 2026
CVSS 6.3
EPSS 0.00
CVE-2025-13108
MEDIUM
IBM DB2 Merge Backup 12.1.0.0 - Sensitive Information Exposure via Improper Memory Clearing
Feb 17, 2026
CVSS 5.5
EPSS 0.00
CVE-2025-36019
MEDIUM
IBM Concert 1.0.0-2.1.0 - Unauthenticated Stored Cross-Site Scripting
Feb 17, 2026
CVSS 6.1
EPSS 0.00
CVE-2025-36018
MEDIUM
IBM Concert 1.0.0-2.1.0 - Cross-Site Request Forgery in Z Hub Component
Feb 17, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-12755
MEDIUM
IBM MQ Operator 3.2.0-3.8.1 - Log Injection
Feb 17, 2026
CVSS 4.0
EPSS 0.00
CVE-2025-36425
MEDIUM
IBM Db2 11.5.0-11.5.9/12.1.0-12.1.3 - Info Disclosure
Feb 17, 2026
CVSS 5.3
EPSS 0.00
CVE-2025-36247
HIGH
IBM Db2 11.5.0-11.5.9/12.1.0-12.1.3 - XXE
Feb 17, 2026
CVSS 7.1
EPSS 0.00
CVE-2025-14689
MEDIUM
IBM Db2 12.1.0-12.1.3 - Authenticated Denial of Service via Federated Object Query Logic
Feb 17, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-13867
MEDIUM
IBM Db2 11.5.0-11.5.9/12.1.0-12.1.3 - DoS
Feb 17, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-14150
MEDIUM
IBM webMethods Integration <11.1 - Info Disclosure
Feb 05, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-13491
MEDIUM
IBM App Connect Enterprise <12.19.0-12.0 - Info Disclosure
Feb 05, 2026
CVSS 5.1
EPSS 0.00
CVE-2025-13379
HIGH
IBM Aspera Console 3.4.0-3.4.8 - SQL Injection
Feb 05, 2026
CVSS 8.6
EPSS 0.00
Products
websphere_application_server 465
aix 400
db2 339
rational_quality_manager 202
sterling_b2b_integrator 195
qradar_security_information_and_event_manager 190
infosphere_information_server 189
maximo_asset_management 182
rational_doors_next_generation 153
rational_team_concert 142
rational_collaborative_lifecycle_management 141
rational_engineering_lifecycle_manager 141
websphere_portal 126
security_guardium 112
cognos_analytics 104
sterling_file_gateway 93
vios 92
rational_rhapsody_design_manager 90
security_verify_access 90
websphere_mq 89
business_process_manager 88
lotus_domino 86
api_connect 81
rational_software_architect_design_manager 81
lotus_notes 71
security_key_lifecycle_manager 70
db2_universal_database 66
concert 65
smartcloud_control_desk 65
urbancode_deploy 65
Quick Filters