ibm

8,320 tracked vulnerabilities.

CVE-2020-4315 MEDIUM
IBM Business Automation Content Analyzer on Cloud 1.0 - Open Redirect
Sep 21, 2020
CVSS 4.3
EPSS 0.01
CVE-2020-4708 MEDIUM
IBM Security Trusteer Pinpoint Detect <11.6.5 - Info Disclosure
Sep 16, 2020
CVSS 5.3
EPSS 0.01
CVE-2020-4409 HIGH
IBM Maximo Asset Management 7.6.0-7.6.1 - Open Redirect via Tabnabbing
Sep 16, 2020
CVSS 8.2
EPSS 0.01
CVE-2020-8339 MEDIUM
IBM BladeCenter AMM Firmware < 3.68n - Authenticated XSSI via Legacy Web Interface
Sep 15, 2020
CVSS 4.3
EPSS 0.01
CVE-2020-4711 MEDIUM
IBM Spectrum Protect Plus 10.1.0-10.1.6 - Path Traversal via URL Request
Sep 15, 2020
CVSS 6.5
EPSS 0.03
CVE-2020-4703 HIGH
IBM Spectrum Protect Plus 10.1.0-10.1.6 - Authenticated Arbitrary File Upload and Remote Code Execution
Sep 15, 2020
CVSS 8.0
EPSS 0.02
CVE-2020-4530 MEDIUM
IBM Business Automation Workflow < 20.0.0.2 and Business Process Manager 8.0-8.6 - Stored Cross-Site Scripting
Sep 15, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4526 MEDIUM
IBM Maximo Asset Management 7.6.0-7.6.0.10 - Cross-Site Request Forgery
Sep 15, 2020
CVSS 4.3
EPSS 0.00
CVE-2020-4521 HIGH
IBM Maximo Asset Management 7.6.0-7.6.0.9 - Authenticated Remote Code Execution via Unsafe Java Deserialization
Sep 15, 2020
CVSS 8.8
EPSS 0.06
CVE-2020-4344 LOW
IBM Tivoli Business Service Manager <6.2.0.3 - Info Disclosure
Sep 15, 2020
CVSS 3.3
EPSS 0.00
CVE-2020-4578 MEDIUM
IBM WebSphere Application Server 7.0.0.0-7.0.0.45 - Cross-Site Scripting
Sep 10, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4698 MEDIUM
IBM Business Process Manager 8.5-8.6 and Business Automation Workflow 18.0-20.0 - Stored Cross-Site Scripting
Sep 08, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4516 MEDIUM
IBM Business Process Manager 8.5-8.6 and Business Automation Workflow 18.0-20.0 - Stored Cross-Site Scripting
Sep 08, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4702 MEDIUM
IBM InfoSphere Information Server 11.7 - Stored Cross-Site Scripting
Sep 04, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4632 MEDIUM
IBM InfoSphere Metadata Asset Manager 11.7 - Authenticated Server-Side Request Forgery
Sep 04, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-4545 HIGH
IBM Aspera Connect < 3.9.9 - Remote Code Execution via DLL Hijacking in Import Feature
Sep 04, 2020
CVSS 7.8
EPSS 0.03
CVE-2020-4638 HIGH
IBM API Connect 2018.4.1.0-2018.4.1.12 - Privilege Escalation via Invitation Link Manipulation
Sep 03, 2020
CVSS 7.2
EPSS 0.02
CVE-2020-4337 MEDIUM
IBM API Connect <2018.4.1.12 - CSRF
Sep 03, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-4693 CRITICAL
IBM Spectrum Protect Operations Center 7.1.0.000-7.1.10.000 - Remote Code Execution via Data Export
Sep 02, 2020
CVSS 9.8
EPSS 0.03
CVE-2020-4546 MEDIUM
IBM Jazz Team Server - Stored Cross-Site Scripting
Sep 02, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4522 MEDIUM
IBM Jazz Team Server - Stored Cross-Site Scripting
Sep 02, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4445 MEDIUM
IBM Jazz Team Server - Stored Cross-Site Scripting
Sep 02, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4492 MEDIUM
IBM Spectrum Scale 4.2.0.0-4.2.3.21 and 5.0.0.0-5.0.4.3 - Denial of Service via Invalid Ioctl Arguments
Aug 31, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-4591 LOW
IBM Spectrum Protect Server 8.1.0.000-8.1.10.000 - Sensitive Information Disclosure via Unencrypted Chunk
Aug 28, 2020
CVSS 3.3
EPSS 0.00
CVE-2020-4559 HIGH
IBM Spectrum Protect 8.1.0.000-8.1.10.000 - Denial of Service via Improper Input Validation
Aug 28, 2020
CVSS 7.5
EPSS 0.01