ibm
8,320 tracked vulnerabilities.
CVE-2020-4160
MEDIUM
IBM QRadar Network Security <5.5.0 - Info Disclosure
Nov 08, 2021
CVSS 5.9
EPSS 0.01
CVE-2020-4153
MEDIUM
IBM QRadar Network Security 5.4.0-5.4.0.14 - Cross-Site Scripting
Nov 08, 2021
CVSS 5.4
EPSS 0.00
CVE-2020-4152
MEDIUM
IBM QRadar Network Security 5.4.0-5.4.0.14 - Cleartext Transmission of Sensitive Information
Nov 08, 2021
CVSS 5.9
EPSS 0.01
CVE-2020-4951
LOW
IBM Cognos Analytics 11.1.7 and 11.2.0 - Exposure of Sensitive Information via Locally Cached Browser Data
Oct 15, 2021
CVSS 3.3
EPSS 0.00
CVE-2020-4654
MEDIUM
IBM Sterling File Gateway <6.1.1.0 - Info Disclosure
Oct 08, 2021
CVSS 6.5
EPSS 0.01
CVE-2020-4941
MEDIUM
IBM Edge Application Manager 4.2 - Sensitive Information Exposure via Error Pages
Sep 23, 2021
CVSS 4.3
EPSS 0.01
CVE-2020-4809
LOW
IBM Edge Application Manager 4.2 - Insecure Storage of Sensitive Information
Sep 23, 2021
CVSS 3.3
EPSS 0.00
CVE-2020-4805
LOW
IBM Edge Application Manager 4.2 - Insecure Storage of Sensitive Information
Sep 23, 2021
CVSS 3.3
EPSS 0.00
CVE-2020-4803
LOW
IBM Edge Application Manager 4.2 - Insecure Storage of Sensitive Information
Sep 23, 2021
CVSS 3.3
EPSS 0.00
CVE-2020-4690
CRITICAL
IBM Security Guardium 11.3 - Use of Hard-coded Credentials
Sep 23, 2021
CVSS 9.8
EPSS 0.01
CVE-2020-4992
MEDIUM
IBM DataPower Gateway 2018.4.1.0-2018.4.1.16 - Cross-Site Request Forgery
Aug 17, 2021
CVSS 6.5
EPSS 0.00
CVE-2020-4706
MEDIUM
IBM API Connect 5.0.0.0-5.0.8.10 - HTTP Header Injection via HOST Header
Aug 17, 2021
CVSS 5.4
EPSS 0.01
CVE-2020-4707
MEDIUM
IBM API Connect 5.0.0.0-5.0.8.11 - Cross-Site Scripting in Web UI
Aug 04, 2021
CVSS 5.4
EPSS 0.00
CVE-2020-5004
MEDIUM
IBM Engineering Lifecycle Optimization - Engineering Insights - Cross-Site Scripting
Jul 28, 2021
CVSS 5.4
EPSS 0.00
CVE-2020-4974
MEDIUM
IBM Jazz Foundation - Authenticated Server-Side Request Forgery
Jul 28, 2021
CVSS 6.3
EPSS 0.01
CVE-2020-4623
MEDIUM
IBM i2 iBase 8.9.13 - Authenticated Arbitrary Code Execution via DLL Search Order Hijacking
Jul 26, 2021
CVSS 6.5
EPSS 0.00
CVE-2020-5031
MEDIUM
IBM Jazz Foundation and Engineering Products - Stored Cross-Site Scripting
Jul 19, 2021
CVSS 5.4
EPSS 0.00
CVE-2020-4980
MEDIUM
IBM QRadar SIEM 7.3-7.4 - Cleartext Transmission of Sensitive Information
Jul 16, 2021
CVSS 6.5
EPSS 0.00
CVE-2020-4821
CRITICAL
IBM InfoSphere Data Replication 11.4 / CDC z/OS 10.2.1 - Authentication Bypass via Empty Password
Jul 16, 2021
CVSS 9.8
EPSS 0.02
CVE-2020-4675
MEDIUM
IBM InfoSphere Master Data Management Server 11.6 - Cross-Site Request Forgery
Jul 16, 2021
CVSS 6.5
EPSS 0.00
CVE-2020-4938
HIGH
IBM MQ Appliance 9.1-9.1.0.7 and 9.2-9.2.1 - Cross-Site Request Forgery
Jul 12, 2021
CVSS 8.8
EPSS 0.00
CVE-2020-4935
MEDIUM
IBM Datacap Navigator 9.1.7 - Stored Cross-Site Scripting
Jul 01, 2021
CVSS 5.4
EPSS 0.00
CVE-2020-4902
HIGH
IBM Datacap Navigator 9.1.7 - SQL Injection
Jul 01, 2021
CVSS 8.8
EPSS 0.01
CVE-2020-4610
HIGH
IBM Security Secret Server - Code Injection
Jun 25, 2021
CVSS 7.8
EPSS 0.00
CVE-2020-4609
HIGH
IBM Security Verify Privilege Manager < 11.0 - Buffer Overflow
Jun 25, 2021
CVSS 7.8
EPSS 0.00
Products
websphere_application_server 465
aix 400
db2 339
rational_quality_manager 202
sterling_b2b_integrator 195
qradar_security_information_and_event_manager 190
infosphere_information_server 189
maximo_asset_management 182
rational_doors_next_generation 153
rational_team_concert 142
rational_collaborative_lifecycle_management 141
rational_engineering_lifecycle_manager 141
websphere_portal 126
security_guardium 112
cognos_analytics 104
sterling_file_gateway 93
vios 92
rational_rhapsody_design_manager 90
security_verify_access 90
websphere_mq 89
business_process_manager 88
lotus_domino 86
api_connect 81
rational_software_architect_design_manager 81
lotus_notes 71
security_key_lifecycle_manager 70
db2_universal_database 66
concert 65
i 65
smartcloud_control_desk 65
Quick Filters