ibm
8,320 tracked vulnerabilities.
CVE-2020-4820
MEDIUM
IBM Cloud Pak for Security 1.4.0.0 - Stored Cross-Site Scripting
Jan 27, 2021
CVSS 6.1
EPSS 0.01
CVE-2020-4816
MEDIUM
IBM Cloud Pak for Security 1.4.0.0 - Information Disclosure via Missing HSTS Enforcement
Jan 27, 2021
CVSS 5.9
EPSS 0.01
CVE-2020-4815
MEDIUM
IBM Cloud Pak for Security 1.4.0.0 - Sensitive Information Exposure via HTTP Response Headers
Jan 27, 2021
CVSS 5.3
EPSS 0.01
CVE-2020-4628
MEDIUM
IBM Cloud Pak for Security 1.3.0.1 and 1.4.0.0 - Sensitive Information Exposure via Error Message
Jan 27, 2021
CVSS 5.3
EPSS 0.01
CVE-2020-27583
CRITICAL
IBM InfoSphere Information Server 8.5.0.0 - Code Injection
Jan 26, 2021
CVSS 9.8
EPSS 0.04
CVE-2020-4949
HIGH
IBM WebSphere Application Server 7.0.0.0-7.0.0.44 - XML External Entity Injection
Jan 26, 2021
CVSS 8.2
EPSS 0.05
CVE-2020-4889
LOW
IBM Spectrum Scale <5.0.5.4, 5.1.0 - Info Disclosure
Jan 26, 2021
CVSS 3.3
EPSS 0.00
CVE-2020-4766
HIGH
IBM MQ Internet Pass-Thru 2.1 and 9.2 - Denial of Service via Malformed MQ Data Requests
Jan 22, 2021
CVSS 7.5
EPSS 0.01
CVE-2020-4969
MEDIUM
IBM Security Identity Governance and Intelligence 5.2.6 - Cleartext Transmission of Sensitive Information
Jan 21, 2021
CVSS 5.9
EPSS 0.01
CVE-2020-4968
MEDIUM
IBM Security Identity Governance and Intelligence 5.2.6 - Use of a Broken or Risky Cryptographic Algorithm
Jan 21, 2021
CVSS 6.5
EPSS 0.00
CVE-2020-4966
MEDIUM
IBM Security Identity Governance and Intelligence 5.2.6 - Session Cookie Exposure via Insecure HTTP Link
Jan 21, 2021
CVSS 4.3
EPSS 0.01
CVE-2020-4958
CRITICAL
IBM Security Identity Governance and Intelligence 5.2.6 - Missing Authentication for Critical Function
Jan 21, 2021
CVSS 9.8
EPSS 0.02
CVE-2020-4983
HIGH
IBM Spectrum LSF 10.1 and IBM Spectrum LSF Suite 10.2 - Authenticated Remote Code Execution via Job Submission
Jan 20, 2021
CVSS 7.8
EPSS 0.00
CVE-2020-4921
HIGH
IBM Security Guardium 10.6 and 11.2 - SQL Injection
Jan 20, 2021
CVSS 8.8
EPSS 0.02
CVE-2020-4887
MEDIUM
IBM AIX <7.3 - Local Privilege Escalation
Jan 20, 2021
CVSS 5.5
EPSS 0.00
CVE-2020-4688
HIGH
IBM Security Guardium 10.6 and 11.2 - Command Injection
Jan 20, 2021
CVSS 7.8
EPSS 0.01
CVE-2020-4881
HIGH
IBM Planning Analytics 2.0 - Sensitive Information Exposure via SSL/TLS Server Hostname Verification Bypass
Jan 19, 2021
CVSS 7.5
EPSS 0.01
CVE-2020-4873
MEDIUM
IBM Planning Analytics 2.0 - Sensitive Information Exposure via Overly Permissive CORS Policy
Jan 19, 2021
CVSS 5.3
EPSS 0.01
CVE-2020-4871
MEDIUM
IBM Planning Analytics 2.0 - Info Disclosure
Jan 19, 2021
CVSS 5.5
EPSS 0.00
CVE-2020-4604
MEDIUM
IBM Security Guardium Insights 2.0.2 - Cleartext Storage of Sensitive Information
Jan 13, 2021
CVSS 4.4
EPSS 0.00
CVE-2020-4602
MEDIUM
IBM Security Guardium Insights 2.0.2 - Insufficiently Protected Credentials
Jan 13, 2021
CVSS 4.4
EPSS 0.00
CVE-2020-4600
MEDIUM
IBM Security Guardium Insights 2.0.2 - Sensitive Information Exposure via Error Message
Jan 13, 2021
CVSS 5.3
EPSS 0.01
CVE-2020-4599
MEDIUM
IBM Security Guardium Insights 2.0.2 - Sensitive Information Exposure via Error Message
Jan 13, 2021
CVSS 5.3
EPSS 0.01
CVE-2020-4597
MEDIUM
IBM Security Guardium Insights 2.0.2 - Cleartext Transmission of Sensitive Information via Insecure Cookie Handling
Jan 13, 2021
CVSS 4.3
EPSS 0.01
CVE-2020-4596
HIGH
IBM Security Guardium Insights 2.0.2 - Use of a Broken or Risky Cryptographic Algorithm
Jan 13, 2021
CVSS 7.5
EPSS 0.01
Products
websphere_application_server 465
aix 400
db2 339
rational_quality_manager 202
sterling_b2b_integrator 195
qradar_security_information_and_event_manager 190
infosphere_information_server 189
maximo_asset_management 182
rational_doors_next_generation 153
rational_team_concert 142
rational_collaborative_lifecycle_management 141
rational_engineering_lifecycle_manager 141
websphere_portal 126
security_guardium 112
cognos_analytics 104
sterling_file_gateway 93
vios 92
rational_rhapsody_design_manager 90
security_verify_access 90
websphere_mq 89
business_process_manager 88
lotus_domino 86
api_connect 81
rational_software_architect_design_manager 81
lotus_notes 71
security_key_lifecycle_manager 70
db2_universal_database 66
concert 65
i 65
smartcloud_control_desk 65
Quick Filters