Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / ibm

ibm

8,153 tracked vulnerabilities.

CVE-2025-36042 MEDIUM

IBM QRadar SIEM 7.5-7.5.0 - Authenticated Stored Cross-Site Scripting in Dashboard

CVE-2025-33120 HIGH

IBM QRadar SIEM <7.5.0 UP13 - Privilege Escalation

CVE-2025-36114 MEDIUM

IBM QRadar SOAR Plugin App 1.0.0-5.6.0 - Path Traversal via URL Request

CVE-2025-1142 MEDIUM

IBM Edge Application Manager 4.5 - Authenticated Server-Side Request Forgery

CVE-2025-1139 MEDIUM

IBM Edge Application Manager 4.5 - Incorrect Permission Assignment for Critical Resource

CVE-2025-2988 LOW

IBM Sterling B2B Integrator & File Gateway <6.2.1 - Info Disclosure

CVE-2025-33008 MEDIUM

IBM Sterling B2B Integrator 6.2.1.0-File Gateway 6.2.1.0 - XSS

CVE-2025-36120 HIGH

IBM Storage Virtualize 8.4-8.7 - Authenticated Privilege Escalation via SSH Session

CVE-2025-33100 MEDIUM

IBM Concert Software <1.2 - Info Disclosure

CVE-2025-33090 HIGH

IBM Concert 1.0.0-1.1.0 - Denial of Service via Inefficient Regular Expression

CVE-2025-27909 MEDIUM

IBM Concert 1.0.0-1.1.0 - Permissive Cross-domain Security Policy with Untrusted Domains

CVE-2025-1759 MEDIUM

IBM Concert Software <1.2 - Info Disclosure

CVE-2025-36088 MEDIUM

IBM TS4500 Library Firmware <=1.11.0.2-C00 Authenticated Stored XSS

CVE-2025-36047 MEDIUM

IBM WebSphere Application Server Liberty 18.0.0.2-25.0.0.8 - Denial of Service via Crafted Request

CVE-2025-33142 MEDIUM

IBM WebSphere App Server <9.0 - Info Disclosure

CVE-2025-36000 MEDIUM

IBM WebSphere Application Server Liberty 17.0.0.3-25.0.0.8 - Stored Cross-Site Scripting

CVE-2025-36124 MEDIUM

IBM WebSphere Application Server Liberty <25.0.0.8 - Auth Bypass

CVE-2025-36119 HIGH

IBM i 7.3-7.6 - Authenticated Privilege Escalation via Web Session Hijacking in Digital Certificate Manager

CVE-2025-36023 MEDIUM

IBM Cloud Pak For Business Automation - IDOR

CVE-2025-36020 MEDIUM

IBM Guardium Data Protection - Cleartext Transmission of Sensitive Credential Information

CVE-2025-3354 HIGH

IBM Tivoli Monitoring <6.3.0.7 - Buffer Overflow

CVE-2025-3320 HIGH

IBM Tivoli Monitoring <6.3.0.7 - Buffer Overflow

CVE-2025-33118 MEDIUM

IBM QRadar SIEM 7.5-7.5.0 Update Pack 12 - Authenticated Stored Cross-Site Scripting

CVE-2025-2824 HIGH

IBM Operational Decision Manager 8.11.0.1, 8.11.1.0, 8.12.0.1, 9.0.0.1, 9.5.0 - Open Redirect

CVE-2025-36040 MEDIUM

IBM Aspera Faspex 5.0.0-5.0.12.1 - Authenticated Insufficient Session Expiration

Previous Page 15 of 327 Next

Products

websphere_application_server 444 aix 393 db2 327 rational_quality_manager 202 sterling_b2b_integrator 195 infosphere_information_server 188 qradar_security_information_and_event_manager 187 maximo_asset_management 182 rational_doors_next_generation 153 rational_team_concert 142 rational_collaborative_lifecycle_management 141 rational_engineering_lifecycle_manager 141 websphere_portal 126 security_guardium 112 cognos_analytics 102 sterling_file_gateway 93 rational_rhapsody_design_manager 90 security_verify_access 90 websphere_mq 89 business_process_manager 88 lotus_domino 86 vios 85 rational_software_architect_design_manager 81 api_connect 79 lotus_notes 71 security_key_lifecycle_manager 70 db2_universal_database 66 concert 65 smartcloud_control_desk 65 urbancode_deploy 63

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy