ibm

8,320 tracked vulnerabilities.

CVE-2020-4820 MEDIUM
IBM Cloud Pak for Security 1.4.0.0 - Stored Cross-Site Scripting
Jan 27, 2021
CVSS 6.1
EPSS 0.01
CVE-2020-4816 MEDIUM
IBM Cloud Pak for Security 1.4.0.0 - Information Disclosure via Missing HSTS Enforcement
Jan 27, 2021
CVSS 5.9
EPSS 0.01
CVE-2020-4815 MEDIUM
IBM Cloud Pak for Security 1.4.0.0 - Sensitive Information Exposure via HTTP Response Headers
Jan 27, 2021
CVSS 5.3
EPSS 0.01
CVE-2020-4628 MEDIUM
IBM Cloud Pak for Security 1.3.0.1 and 1.4.0.0 - Sensitive Information Exposure via Error Message
Jan 27, 2021
CVSS 5.3
EPSS 0.01
CVE-2020-27583 CRITICAL
IBM InfoSphere Information Server 8.5.0.0 - Code Injection
Jan 26, 2021
CVSS 9.8
EPSS 0.04
CVE-2020-4949 HIGH
IBM WebSphere Application Server 7.0.0.0-7.0.0.44 - XML External Entity Injection
Jan 26, 2021
CVSS 8.2
EPSS 0.05
CVE-2020-4889 LOW
IBM Spectrum Scale <5.0.5.4, 5.1.0 - Info Disclosure
Jan 26, 2021
CVSS 3.3
EPSS 0.00
CVE-2020-4766 HIGH
IBM MQ Internet Pass-Thru 2.1 and 9.2 - Denial of Service via Malformed MQ Data Requests
Jan 22, 2021
CVSS 7.5
EPSS 0.01
CVE-2020-4969 MEDIUM
IBM Security Identity Governance and Intelligence 5.2.6 - Cleartext Transmission of Sensitive Information
Jan 21, 2021
CVSS 5.9
EPSS 0.01
CVE-2020-4968 MEDIUM
IBM Security Identity Governance and Intelligence 5.2.6 - Use of a Broken or Risky Cryptographic Algorithm
Jan 21, 2021
CVSS 6.5
EPSS 0.00
CVE-2020-4966 MEDIUM
IBM Security Identity Governance and Intelligence 5.2.6 - Session Cookie Exposure via Insecure HTTP Link
Jan 21, 2021
CVSS 4.3
EPSS 0.01
CVE-2020-4958 CRITICAL
IBM Security Identity Governance and Intelligence 5.2.6 - Missing Authentication for Critical Function
Jan 21, 2021
CVSS 9.8
EPSS 0.02
CVE-2020-4983 HIGH
IBM Spectrum LSF 10.1 and IBM Spectrum LSF Suite 10.2 - Authenticated Remote Code Execution via Job Submission
Jan 20, 2021
CVSS 7.8
EPSS 0.00
CVE-2020-4921 HIGH
IBM Security Guardium 10.6 and 11.2 - SQL Injection
Jan 20, 2021
CVSS 8.8
EPSS 0.02
CVE-2020-4887 MEDIUM
IBM AIX <7.3 - Local Privilege Escalation
Jan 20, 2021
CVSS 5.5
EPSS 0.00
CVE-2020-4688 HIGH
IBM Security Guardium 10.6 and 11.2 - Command Injection
Jan 20, 2021
CVSS 7.8
EPSS 0.01
CVE-2020-4881 HIGH
IBM Planning Analytics 2.0 - Sensitive Information Exposure via SSL/TLS Server Hostname Verification Bypass
Jan 19, 2021
CVSS 7.5
EPSS 0.01
CVE-2020-4873 MEDIUM
IBM Planning Analytics 2.0 - Sensitive Information Exposure via Overly Permissive CORS Policy
Jan 19, 2021
CVSS 5.3
EPSS 0.01
CVE-2020-4871 MEDIUM
IBM Planning Analytics 2.0 - Info Disclosure
Jan 19, 2021
CVSS 5.5
EPSS 0.00
CVE-2020-4604 MEDIUM
IBM Security Guardium Insights 2.0.2 - Cleartext Storage of Sensitive Information
Jan 13, 2021
CVSS 4.4
EPSS 0.00
CVE-2020-4602 MEDIUM
IBM Security Guardium Insights 2.0.2 - Insufficiently Protected Credentials
Jan 13, 2021
CVSS 4.4
EPSS 0.00
CVE-2020-4600 MEDIUM
IBM Security Guardium Insights 2.0.2 - Sensitive Information Exposure via Error Message
Jan 13, 2021
CVSS 5.3
EPSS 0.01
CVE-2020-4599 MEDIUM
IBM Security Guardium Insights 2.0.2 - Sensitive Information Exposure via Error Message
Jan 13, 2021
CVSS 5.3
EPSS 0.01
CVE-2020-4597 MEDIUM
IBM Security Guardium Insights 2.0.2 - Cleartext Transmission of Sensitive Information via Insecure Cookie Handling
Jan 13, 2021
CVSS 4.3
EPSS 0.01
CVE-2020-4596 HIGH
IBM Security Guardium Insights 2.0.2 - Use of a Broken or Risky Cryptographic Algorithm
Jan 13, 2021
CVSS 7.5
EPSS 0.01