ibm

8,153 tracked vulnerabilities.

CVE-2024-49796 MEDIUM
IBM ApplinX 11.1 - Clickjacking
Feb 06, 2025
CVSS 5.4
EPSS 0.00
CVE-2024-49795 MEDIUM
IBM ApplinX 11.1 - Cross-Site Request Forgery
Feb 06, 2025
CVSS 4.3
EPSS 0.00
CVE-2024-49794 MEDIUM
IBM ApplinX 11.1 - Cross-Site Request Forgery
Feb 06, 2025
CVSS 4.3
EPSS 0.00
CVE-2024-49793 MEDIUM
IBM ApplinX 11.1 - Authenticated Stored Cross-Site Scripting
Feb 06, 2025
CVSS 5.4
EPSS 0.00
CVE-2024-49792 MEDIUM
IBM ApplinX 11.1 - Authenticated Stored Cross-Site Scripting
Feb 06, 2025
CVSS 5.4
EPSS 0.00
CVE-2024-49791 MEDIUM
IBM ApplinX 11.1 - Authenticated Stored Cross-Site Scripting
Feb 06, 2025
CVSS 6.4
EPSS 0.00
CVE-2024-56473 MEDIUM
IBM Aspera Shares 1.9.0-1.10.0 PL6 - IP Address Spoofing via Client-IP Header
Feb 05, 2025
CVSS 5.3
EPSS 0.00
CVE-2024-56472 MEDIUM
IBM Aspera Shares <1.10.0 PL6 - XSS
Feb 05, 2025
CVSS 6.4
EPSS 0.00
CVE-2024-56471 MEDIUM
IBM Aspera Shares <1.10.0 PL6 - SSRF
Feb 05, 2025
CVSS 5.4
EPSS 0.00
CVE-2024-56470 MEDIUM
IBM Aspera Shares <1.10.0 PL6 - SSRF
Feb 05, 2025
CVSS 5.4
EPSS 0.00
CVE-2024-38318 MEDIUM
IBM Aspera Shares <1.9.0-1.10.0 PL6 - XSS
Feb 05, 2025
CVSS 4.8
EPSS 0.00
CVE-2024-38317 MEDIUM
IBM Aspera Shares <1.10.0 PL6 - XSS
Feb 05, 2025
CVSS 4.8
EPSS 0.00
CVE-2024-38316 MEDIUM
IBM Aspera Shares <1.10.0 PL6 - DoS
Feb 05, 2025
CVSS 4.3
EPSS 0.00
CVE-2024-52365 MEDIUM
IBM Cloud Pak for Business Automation <22.0.2 - XSS
Feb 05, 2025
CVSS 6.4
EPSS 0.00
CVE-2024-52364 MEDIUM
IBM Cloud Pak for Business Automation <22.0.2 - XSS
Feb 05, 2025
CVSS 5.4
EPSS 0.01
CVE-2024-49348 MEDIUM
IBM Cloud Pak for Business Automation 18.0.0-22.0.2 - Incorrect Privilege Assignment via Task Reassignment
Feb 05, 2025
CVSS 4.3
EPSS 0.00
CVE-2024-49352 HIGH
IBM Cognos Analytics 11.2.0-11.2.4, 12.0.0-12.0.4 - XML External Entity Injection
Feb 05, 2025
CVSS 7.1
EPSS 0.00
CVE-2024-45658 LOW
IBM Security Verify Access 10.0.0-10.0.8 - Sensitive Information Exposure via Detailed Error Messages
Feb 04, 2025
CVSS 2.7
EPSS 0.00
CVE-2024-45657 MEDIUM
IBM Security Verify Access 10.0.0-10.0.8 - Incorrect Permission Assignment for Critical Resource
Feb 04, 2025
CVSS 5.0
EPSS 0.00
CVE-2024-43187 MEDIUM
IBM Security Verify Access Appliance and Container <10.0.9 - Info D...
Feb 04, 2025
CVSS 5.9
EPSS 0.00
CVE-2024-40700 MEDIUM
IBM Security Verify Access Appliance and Container <10.0.9 - XSS
Feb 04, 2025
CVSS 6.1
EPSS 0.00
CVE-2024-35138 MEDIUM
IBM Security Verify Access 10.0.0-10.0.8 - Cross-Site Request Forgery
Feb 04, 2025
CVSS 6.5
EPSS 0.00
CVE-2024-45659 MEDIUM
IBM Security Verify Access 10.0.0-10.0.8 - Sensitive Information Exposure via Error Message
Feb 04, 2025
CVSS 5.3
EPSS 0.00
CVE-2024-49349 MEDIUM
IBM Financial Transaction Manager for Multiplatforms 3.2.4.0-3.2.4.1 - Authenticated Stored Cross-Site Scripting
Jan 31, 2025
CVSS 6.1
EPSS 0.00
CVE-2024-49339 MEDIUM
IBM Financial Transaction Manager for Multiplatforms 3.2.4.0-3.2.4.1 - Authenticated Stored Cross-Site Scripting
Jan 31, 2025
CVSS 6.4
EPSS 0.00
Products
websphere_application_server 444 aix 393 db2 327 rational_quality_manager 202 sterling_b2b_integrator 195 infosphere_information_server 188 qradar_security_information_and_event_manager 187 maximo_asset_management 182 rational_doors_next_generation 153 rational_team_concert 142 rational_collaborative_lifecycle_management 141 rational_engineering_lifecycle_manager 141 websphere_portal 126 security_guardium 112 cognos_analytics 102 sterling_file_gateway 93 rational_rhapsody_design_manager 90 security_verify_access 90 websphere_mq 89 business_process_manager 88 lotus_domino 86 vios 85 rational_software_architect_design_manager 81 api_connect 79 lotus_notes 71 security_key_lifecycle_manager 70 db2_universal_database 66 concert 65 smartcloud_control_desk 65 urbancode_deploy 63
Quick Filters
Critical CVEs With Exploits In CISA KEV