ibm
8,320 tracked vulnerabilities.
CVE-2020-4315
MEDIUM
IBM Business Automation Content Analyzer on Cloud 1.0 - Open Redirect
Sep 21, 2020
CVSS 4.3
EPSS 0.01
CVE-2020-4708
MEDIUM
IBM Security Trusteer Pinpoint Detect <11.6.5 - Info Disclosure
Sep 16, 2020
CVSS 5.3
EPSS 0.01
CVE-2020-4409
HIGH
IBM Maximo Asset Management 7.6.0-7.6.1 - Open Redirect via Tabnabbing
Sep 16, 2020
CVSS 8.2
EPSS 0.01
CVE-2020-8339
MEDIUM
IBM BladeCenter AMM Firmware < 3.68n - Authenticated XSSI via Legacy Web Interface
Sep 15, 2020
CVSS 4.3
EPSS 0.01
CVE-2020-4711
MEDIUM
IBM Spectrum Protect Plus 10.1.0-10.1.6 - Path Traversal via URL Request
Sep 15, 2020
CVSS 6.5
EPSS 0.03
CVE-2020-4703
HIGH
IBM Spectrum Protect Plus 10.1.0-10.1.6 - Authenticated Arbitrary File Upload and Remote Code Execution
Sep 15, 2020
CVSS 8.0
EPSS 0.02
CVE-2020-4530
MEDIUM
IBM Business Automation Workflow < 20.0.0.2 and Business Process Manager 8.0-8.6 - Stored Cross-Site Scripting
Sep 15, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4526
MEDIUM
IBM Maximo Asset Management 7.6.0-7.6.0.10 - Cross-Site Request Forgery
Sep 15, 2020
CVSS 4.3
EPSS 0.00
CVE-2020-4521
HIGH
IBM Maximo Asset Management 7.6.0-7.6.0.9 - Authenticated Remote Code Execution via Unsafe Java Deserialization
Sep 15, 2020
CVSS 8.8
EPSS 0.06
CVE-2020-4344
LOW
IBM Tivoli Business Service Manager <6.2.0.3 - Info Disclosure
Sep 15, 2020
CVSS 3.3
EPSS 0.00
CVE-2020-4578
MEDIUM
IBM WebSphere Application Server 7.0.0.0-7.0.0.45 - Cross-Site Scripting
Sep 10, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4698
MEDIUM
IBM Business Process Manager 8.5-8.6 and Business Automation Workflow 18.0-20.0 - Stored Cross-Site Scripting
Sep 08, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4516
MEDIUM
IBM Business Process Manager 8.5-8.6 and Business Automation Workflow 18.0-20.0 - Stored Cross-Site Scripting
Sep 08, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4702
MEDIUM
IBM InfoSphere Information Server 11.7 - Stored Cross-Site Scripting
Sep 04, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4632
MEDIUM
IBM InfoSphere Metadata Asset Manager 11.7 - Authenticated Server-Side Request Forgery
Sep 04, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-4545
HIGH
IBM Aspera Connect < 3.9.9 - Remote Code Execution via DLL Hijacking in Import Feature
Sep 04, 2020
CVSS 7.8
EPSS 0.03
CVE-2020-4638
HIGH
IBM API Connect 2018.4.1.0-2018.4.1.12 - Privilege Escalation via Invitation Link Manipulation
Sep 03, 2020
CVSS 7.2
EPSS 0.02
CVE-2020-4337
MEDIUM
IBM API Connect <2018.4.1.12 - CSRF
Sep 03, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-4693
CRITICAL
IBM Spectrum Protect Operations Center 7.1.0.000-7.1.10.000 - Remote Code Execution via Data Export
Sep 02, 2020
CVSS 9.8
EPSS 0.03
CVE-2020-4546
MEDIUM
IBM Jazz Team Server - Stored Cross-Site Scripting
Sep 02, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4522
MEDIUM
IBM Jazz Team Server - Stored Cross-Site Scripting
Sep 02, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4445
MEDIUM
IBM Jazz Team Server - Stored Cross-Site Scripting
Sep 02, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4492
MEDIUM
IBM Spectrum Scale 4.2.0.0-4.2.3.21 and 5.0.0.0-5.0.4.3 - Denial of Service via Invalid Ioctl Arguments
Aug 31, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-4591
LOW
IBM Spectrum Protect Server 8.1.0.000-8.1.10.000 - Sensitive Information Disclosure via Unencrypted Chunk
Aug 28, 2020
CVSS 3.3
EPSS 0.00
CVE-2020-4559
HIGH
IBM Spectrum Protect 8.1.0.000-8.1.10.000 - Denial of Service via Improper Input Validation
Aug 28, 2020
CVSS 7.5
EPSS 0.01
Products
websphere_application_server 465
aix 400
db2 339
rational_quality_manager 202
sterling_b2b_integrator 195
qradar_security_information_and_event_manager 190
infosphere_information_server 189
maximo_asset_management 182
rational_doors_next_generation 153
rational_team_concert 142
rational_collaborative_lifecycle_management 141
rational_engineering_lifecycle_manager 141
websphere_portal 126
security_guardium 112
cognos_analytics 104
sterling_file_gateway 93
vios 92
rational_rhapsody_design_manager 90
security_verify_access 90
websphere_mq 89
business_process_manager 88
lotus_domino 86
api_connect 81
rational_software_architect_design_manager 81
lotus_notes 71
security_key_lifecycle_manager 70
db2_universal_database 66
concert 65
i 65
smartcloud_control_desk 65
Quick Filters