Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / ibm

ibm

8,153 tracked vulnerabilities.

CVE-2026-2606 MEDIUM

IBM webMethods API Gateway 10.11-11.1 - Path Traversal

CVE-2026-1265 MEDIUM

IBM InfoSphere Information Server 11.7.0.0-11.7.1.6 - Info Disclosure

CVE-2025-36335 MEDIUM

Vulnerabilities found

CVE-2025-36180 MEDIUM

Inadequate Pod Communication Restrictions, affects watsonx.data

CVE-2025-36122 MEDIUM

IBM® Db2® is vulnerable to a denial of service with a specially crafted query when stmtheap is set to automatic

CVE-2025-14688 MEDIUM

IBM® Db2® is vulnerable to a denial of service when fetching from certain tables under specific configurations

CVE-2025-36074 MEDIUM

Security vulnerability has been detected in IBM Security Verify Directory

CVE-2025-13044 MEDIUM

IBM Concert 1.0.0-2.2.0 - Predictable Temporary File Symlink Overwrite

CVE-2025-66487 LOW

IBM Aspera Shares 1.9.9-1.11.0 - Email Rate Limit Denial of Service

CVE-2025-66486 MEDIUM

IBM Aspera Shares 1.9.9-1.11.0 - HTML Injection

CVE-2025-66485 MEDIUM

IBM Aspera Shares 1.9.9-1.11.0 - HTTP Header Injection

CVE-2025-66484 MEDIUM

IBM Aspera Shares 1.9.9-1.11.0 - Stored Cross-Site Scripting

CVE-2025-66483 MEDIUM

IBM Aspera Shares 1.9.9-1.11.0 - Session Not Invalidated After Password Reset

CVE-2025-36375 MEDIUM

IBM DataPower Gateway vulnerable to CSRF

CVE-2025-36373 MEDIUM

Incorrect administrative access control in IBM DataPower Gateway

CVE-2025-13916 MEDIUM

IBM Aspera Shares 1.9.9-1.11.0 - Weak Cryptography

CVE-2025-13855 HIGH

IBM Storage Protect Server is affected by a vulnerability that could allow authenticated users to access administrative metadata through the JSON-RPC endpoint .

CVE-2025-36187 MEDIUM

Multiple Security vulnerabilities affecting IBM Knowledge Catalog Standard Cartridge

CVE-2025-14684 MEDIUM

IBM Maximo Application Suite - Monitor Component uses Log Forging which is vulnerable to .

CVE-2025-64648 MEDIUM

IBM Concert 1.0.0-2.2.0 - Cleartext Data Transmission

CVE-2025-64647 MEDIUM

IBM Concert 1.0.0-2.2.0 - Weak Cryptography

CVE-2025-64646 MEDIUM

IBM Concert 1.0.0-2.2.0 - Uncleared Memory Information Disclosure

CVE-2025-36440 MEDIUM

IBM Concert 1.0.0-2.2.0 - Missing Function-Level Access Control

CVE-2025-36438 MEDIUM

IBM Concert 1.0.0-2.2.0 - Improper Channel Communication Restriction

CVE-2025-36422 MEDIUM

IBM InfoSphere Information Server is vulnerable to cross-site request forgery

Previous Page 3 of 327 Next

Products

websphere_application_server 444 aix 393 db2 327 rational_quality_manager 202 sterling_b2b_integrator 195 infosphere_information_server 188 qradar_security_information_and_event_manager 187 maximo_asset_management 182 rational_doors_next_generation 153 rational_team_concert 142 rational_collaborative_lifecycle_management 141 rational_engineering_lifecycle_manager 141 websphere_portal 126 security_guardium 112 cognos_analytics 102 sterling_file_gateway 93 rational_rhapsody_design_manager 90 security_verify_access 90 websphere_mq 89 business_process_manager 88 lotus_domino 86 vios 85 rational_software_architect_design_manager 81 api_connect 79 lotus_notes 71 security_key_lifecycle_manager 70 db2_universal_database 66 concert 65 smartcloud_control_desk 65 urbancode_deploy 63

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy