ibm
8,320 tracked vulnerabilities.
CVE-2020-4996
MEDIUM
IBM Security Identity Governance and Intelligence <5.2.6 - Info Dis...
Feb 09, 2021
CVSS 5.5
EPSS 0.00
CVE-2020-4995
MEDIUM
IBM Security Identity Governance and Intelligence 5.2.6 - Insufficient Session Expiration
Feb 09, 2021
CVSS 5.3
EPSS 0.01
CVE-2020-4795
HIGH
IBM Security Identity Governance and Intelligence <5.2.6 - Info Dis...
Feb 09, 2021
CVSS 8.2
EPSS 0.02
CVE-2020-4791
MEDIUM
IBM Security Identity Governance and Intelligence 5.2.6 - Improper Certificate Validation
Feb 09, 2021
CVSS 5.3
EPSS 0.00
CVE-2020-4790
MEDIUM
IBM Security Identity Governance and Intelligence 5.2.6 - Denial of Service via URL Validation
Feb 09, 2021
CVSS 6.5
EPSS 0.01
CVE-2020-4832
MEDIUM
IBM PowerHA 7.2 - Sensitive Information Exposure via Temporary Directories
Feb 05, 2021
CVSS 5.5
EPSS 0.00
CVE-2020-5032
MEDIUM
IBM QRadar SIEM 7.3-7.4 - Denial of Service via Crafted Payload
Feb 04, 2021
CVSS 4.3
EPSS 0.01
CVE-2020-4828
MEDIUM
IBM API Connect 10.0.0.0-10.0.1.0 and 2018.4.1.0-2018.4.1.13 - Web Cache Poisoning via HTTP Request Header Manipulation
Feb 04, 2021
CVSS 6.5
EPSS 0.01
CVE-2020-4827
MEDIUM
IBM API Connect 10.0.0.0-10.0.1.0 and 2018.4.1.0-2018.4.1.13 - Cross-Site Request Forgery
Feb 04, 2021
CVSS 4.3
EPSS 0.00
CVE-2020-4826
MEDIUM
IBM API Connect 10.0.0.0-10.0.1.0 and 2018.4.1.0-2018.4.1.13 - Cross-Site Request Forgery
Feb 04, 2021
CVSS 4.3
EPSS 0.00
CVE-2020-4825
MEDIUM
IBM API Connect 10.0.0.0-10.0.1.0 and 2018.4.1.0-2018.4.1.13 - Cross-Site Scripting
Feb 04, 2021
CVSS 5.4
EPSS 0.01
CVE-2020-4640
MEDIUM
IBM API Connect Sensitive Information Exposure via URL Fragment Identifiers
Feb 04, 2021
CVSS 4.1
EPSS 0.00
CVE-2020-4934
MEDIUM
IBM Content Navigator 3.0.CD - Path Traversal via Dot Dot Sequences
Feb 02, 2021
CVSS 4.3
EPSS 0.02
CVE-2020-4888
HIGH
IBM QRadar SIEM 7.3.0-7.3.3 Patch 7 and 7.4.0-7.4.2 Patch 1 - Remote Code Execution via Java Deserialization
Jan 28, 2021
CVSS 8.8
EPSS 0.62
CVE-2020-4682
CRITICAL
IBM MQ 7.5-9.2 - Remote Code Execution via Unsafe Deserialization
Jan 28, 2021
CVSS 9.8
EPSS 0.08
CVE-2020-4952
HIGH
IBM Security Guardium 11.2 - Privilege Escalation
Jan 27, 2021
CVSS 8.8
EPSS 0.02
CVE-2020-4865
MEDIUM
IBM Jazz Foundation - Stored Cross-Site Scripting in Web UI
Jan 27, 2021
CVSS 5.4
EPSS 0.01
CVE-2020-4855
MEDIUM
IBM Jazz Foundation - Stored Cross-Site Scripting
Jan 27, 2021
CVSS 5.4
EPSS 0.01
CVE-2020-4789
MEDIUM
IBM QRadar SIEM 7.3.0-7.4.2 - Path Traversal via URL Request
Jan 27, 2021
CVSS 6.5
EPSS 0.03
CVE-2020-4787
LOW
IBM QRadar SIEM 7.3.0-7.3.3, 7.4.0-7.4.2 SSRF
Jan 27, 2021
CVSS 2.3
EPSS 0.00
CVE-2020-4786
MEDIUM
IBM QRadar SIEM 7.3.0-7.3.3 Patch 5, 7.4.0-7.4.2 Patch 1 - Authenticated Server-Side Request Forgery
Jan 27, 2021
CVSS 4.3
EPSS 0.01
CVE-2020-4547
MEDIUM
IBM Jazz Foundation - Clickjacking via Malicious Web Site
Jan 27, 2021
CVSS 5.4
EPSS 0.01
CVE-2020-4524
MEDIUM
IBM Jazz Foundation - Stored Cross-Site Scripting
Jan 27, 2021
CVSS 5.4
EPSS 0.01
CVE-2020-4189
MEDIUM
IBM Security Guardium 11.2 - Sensitive Information Exposure via Response Headers
Jan 27, 2021
CVSS 4.3
EPSS 0.01
CVE-2020-4967
MEDIUM
IBM Cloud Pak for Security 1.3.0.1 - Sensitive Information Exposure via HTTP Headers
Jan 27, 2021
CVSS 4.3
EPSS 0.01
Products
websphere_application_server 465
aix 400
db2 339
rational_quality_manager 202
sterling_b2b_integrator 195
qradar_security_information_and_event_manager 190
infosphere_information_server 189
maximo_asset_management 182
rational_doors_next_generation 153
rational_team_concert 142
rational_collaborative_lifecycle_management 141
rational_engineering_lifecycle_manager 141
websphere_portal 126
security_guardium 112
cognos_analytics 104
sterling_file_gateway 93
vios 92
rational_rhapsody_design_manager 90
security_verify_access 90
websphere_mq 89
business_process_manager 88
lotus_domino 86
api_connect 81
rational_software_architect_design_manager 81
lotus_notes 71
security_key_lifecycle_manager 70
db2_universal_database 66
concert 65
i 65
smartcloud_control_desk 65
Quick Filters