ibm

8,320 tracked vulnerabilities.

CVE-2020-4341 MEDIUM
IBM Security Secret Server < 10.8 - Sensitive Information Exposure via Error Message
Jun 24, 2020
CVSS 5.3
EPSS 0.01
CVE-2020-4327 MEDIUM
IBM Security Secret Server < 10.8 - Sensitive Information Exposure via Error Message
Jun 24, 2020
CVSS 5.3
EPSS 0.01
CVE-2020-4323 MEDIUM
IBM Security Secret Server < 10.8 - Cross-Site Scripting
Jun 24, 2020
CVSS 6.1
EPSS 0.01
CVE-2020-4322 MEDIUM
IBM Security Secret Server 10.7 - CSRF
Jun 24, 2020
CVSS 4.3
EPSS 0.01
CVE-2020-4188 MEDIUM
IBM Security Guardium <11.1 - Info Disclosure
Jun 23, 2020
CVSS 5.3
EPSS 0.01
CVE-2020-4297 MEDIUM
IBM DOORS Next Generation 6.0.2, 6.0.6, 6.0.6.1, 7.0 - Cross-Site Scripting
Jun 19, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4295 MEDIUM
IBM DOORS Next Generation 6.0.2, 6.0.6, 6.0.6.1, 7.0 - Cross-Site Scripting
Jun 19, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4281 MEDIUM
IBM DOORS Next Generation 6.0.2, 6.0.6, 6.0.6.1, 7.0 - Stored Cross-Site Scripting
Jun 19, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4532 MEDIUM
IBM Business Automation Workflow and Business Process Manager - Sensitive Information Exposure via Error Message
Jun 17, 2020
CVSS 5.3
EPSS 0.01
CVE-2020-4320 MEDIUM
IBM MQ 8.0.0.0-8.0.0.14, 9.0.0.0-9.0.0.9, 9.1.0-9.1.4 - Improper Certificate Validation in AMQP Channels
Jun 16, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-4310 HIGH
IBM MQ 8.0.0.0-8.0.0.14, 9.0.0.0-9.0.0.9, 9.1.0-9.1.4 - Denial of Service in Data Conversion Logic
Jun 16, 2020
CVSS 7.5
EPSS 0.02
CVE-2020-4494 HIGH
IBM Spectrum Protect Client/for Space Management 8.1.7.0-8.1.9.1 Authentication Bypass
Jun 15, 2020
CVSS 7.5
EPSS 0.02
CVE-2020-4477 MEDIUM
IBM Spectrum Protect Plus 10.1.0-10.1.5 - Sensitive Information Disclosure in Virgo Log File
Jun 15, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-4471 MEDIUM
IBM Spectrum Protect Plus 10.1.0-10.1.5 - Unauthenticated Denial of Service via HTTP Command
Jun 15, 2020
CVSS 6.5
EPSS 0.03
CVE-2020-4470 HIGH
IBM Spectrum Protect Plus 10.1.0-10.1.5 - Authenticated Arbitrary File Upload and Remote Code Execution
Jun 15, 2020
CVSS 8.0
EPSS 0.02
CVE-2020-4469 CRITICAL
IBM Spectrum Protect Plus 10.1.0-10.1.5 - Remote Code Execution via Crafted HTTP Command
Jun 15, 2020
CVSS 9.8
EPSS 0.13
CVE-2020-4406 MEDIUM
IBM Spectrum Protect Client <8.1.9.1 - CSRF
Jun 15, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4216 CRITICAL
IBM Spectrum Protect Plus 10.1.0-10.1.5 - Use of Hard-coded Credentials
Jun 15, 2020
CVSS 9.8
EPSS 0.02
CVE-2020-4251 MEDIUM
IBM API Connect 5.0.0.0-5.0.8.8 - Cross-Site Scripting in Web UI
Jun 12, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4380 MEDIUM
IBM Workload Scheduler 9.3.0.4 - Stored Cross-Site Scripting
Jun 11, 2020
CVSS 5.4
EPSS 0.01
CVE-2020-4436 HIGH
IBM Aspera Products - Authenticated Buffer Overflow
Jun 10, 2020
CVSS 7.5
EPSS 0.03
CVE-2020-4435 HIGH
IBM Aspera Products - Arbitrary Memory Corruption via HTTP Fallback Service
Jun 10, 2020
CVSS 7.5
EPSS 0.02
CVE-2020-4434 HIGH
IBM Aspera Products - Authenticated Buffer Overflow via HTTP Fallback Service
Jun 10, 2020
CVSS 7.5
EPSS 0.03
CVE-2020-4433 HIGH
IBM Aspera Applications - Stack-Based Buffer Overflow
Jun 10, 2020
CVSS 7.5
EPSS 0.05
CVE-2020-4432 HIGH
IBM Aspera Products - Authenticated Command Injection via SOAP API
Jun 10, 2020
CVSS 7.5
EPSS 0.03