ibm

8,153 tracked vulnerabilities.

CVE-2024-45652 MEDIUM
IBM Maximo Asset Management 7.6.1.3 - Path Traversal via MXAPIASSET API
Jan 19, 2025
CVSS 6.5
EPSS 0.00
CVE-2024-45662 HIGH
IBM Safer Payments 6.4.0.00-6.4.2.07, 6.5.0.00-6.5.0.05, 6.6.0.00-6.6.0.03 - Denial of Service via Resource Allocation
Jan 18, 2025
CVSS 7.5
EPSS 0.00
CVE-2024-49824 MEDIUM
IBM Robotic Process Automation <23.0.18 - Privilege Escalation
Jan 18, 2025
CVSS 6.5
EPSS 0.00
CVE-2024-49354 MEDIUM
IBM Concert 1.0.0-1.0.2 - Sensitive Information Disclosure via API Calls
Jan 18, 2025
CVSS 5.3
EPSS 0.00
CVE-2024-47113 HIGH
IBM ICP - Voice Gateway <1.0.8 - RCE
Jan 18, 2025
CVSS 8.1
EPSS 0.00
CVE-2024-47106 MEDIUM
IBM Jazz for Service Management <1.1.3.22 - Info Disclosure
Jan 18, 2025
CVSS 5.3
EPSS 0.00
CVE-2024-51448 MEDIUM
IBM Robotic Process Automation 21.0.0-21.0.7.17 & 23.0.0-23.0.18 Privilege Escalation
Jan 18, 2025
CVSS 6.7
EPSS 0.00
CVE-2024-49338 MEDIUM
IBM App Connect Enterprise <13.0.1.0 - Privilege Escalation
Jan 18, 2025
CVSS 4.4
EPSS 0.00
CVE-2024-51462 MEDIUM
IBM QRadar WinCollect Agent <10.1.12 - Code Injection
Jan 17, 2025
CVSS 4.0
EPSS 0.00
CVE-2024-52363 MEDIUM
IBM InfoSphere Information Server 11.7 - Path Traversal
Jan 17, 2025
CVSS 6.5
EPSS 0.00
CVE-2024-41746 HIGH
IBM CICS TX Advanced 10.1, 11.1 and Standard 11.1 - Stored Cross-Site Scripting
Jan 16, 2025
CVSS 7.2
EPSS 0.00
CVE-2024-52898 MEDIUM
IBM MQ 9.3.0-9.3.0.25 and 9.4.0-9.4.1.0 - Sensitive Information Exposure via Web Console Error Messages
Jan 14, 2025
CVSS 6.2
EPSS 0.00
CVE-2024-51456 MEDIUM
IBM Robotic Process Automation <23.0.19 - Info Disclosure
Jan 12, 2025
CVSS 5.9
EPSS 0.00
CVE-2024-49785 MEDIUM
IBM watsonx.ai 1.1-2.0.3 and watsonx.ai on Cloud Pak for Data 4.8-5.0.3 - Authenticated Stored Cross-Site Scripting
Jan 12, 2025
CVSS 5.4
EPSS 0.00
CVE-2024-41787 CRITICAL
IBM Engineering Requirements Management DOORS Next 7.0.2 and 7.0.3 - Remote Code Execution via Race Condition
Jan 10, 2025
CVSS 9.8
EPSS 0.00
CVE-2024-43176 MEDIUM
IBM OpenPages 9.0 - Info Disclosure
Jan 09, 2025
CVSS 5.4
EPSS 0.00
CVE-2024-40679 MEDIUM
IBM Db2 11.5 - Sensitive Information Disclosure in Log File
Jan 08, 2025
CVSS 5.5
EPSS 0.00
CVE-2024-40702 HIGH
IBM Cognos Controller <11.0.1 - Info Disclosure
Jan 07, 2025
CVSS 8.2
EPSS 0.00
CVE-2024-28778 MEDIUM
IBM Cognos Controller 11.0.0-11.0.1 and IBM Controller 11.1.0 - Exposure of Hard-coded Artifactory API Keys
Jan 07, 2025
CVSS 6.5
EPSS 0.00
CVE-2024-25037 MEDIUM
IBM Cognos Controller <11.0.1 - Info Disclosure
Jan 07, 2025
CVSS 4.3
EPSS 0.00
CVE-2024-45640 MEDIUM
IBM Security ReaQta <3.12 - Info Disclosure
Jan 07, 2025
CVSS 5.3
EPSS 0.00
CVE-2024-45100 MEDIUM
IBM Security ReaQta 3.12-3.12.13 - Authenticated Denial of Service via Administration Requests
Jan 07, 2025
CVSS 4.9
EPSS 0.00
CVE-2024-52893 MEDIUM
IBM Concert 1.0.0-1.0.3 - Sensitive Information Exposure via Error Message
Jan 07, 2025
CVSS 5.3
EPSS 0.00
CVE-2024-52891 MEDIUM
IBM Concert Software <1.0.4 - Info Disclosure
Jan 07, 2025
CVSS 5.4
EPSS 0.00
CVE-2024-52367 MEDIUM
IBM Concert Software <1.0.4 - Info Disclosure
Jan 07, 2025
CVSS 5.3
EPSS 0.00
Products
websphere_application_server 444 aix 393 db2 327 rational_quality_manager 202 sterling_b2b_integrator 195 infosphere_information_server 188 qradar_security_information_and_event_manager 187 maximo_asset_management 182 rational_doors_next_generation 153 rational_team_concert 142 rational_collaborative_lifecycle_management 141 rational_engineering_lifecycle_manager 141 websphere_portal 126 security_guardium 112 cognos_analytics 102 sterling_file_gateway 93 rational_rhapsody_design_manager 90 security_verify_access 90 websphere_mq 89 business_process_manager 88 lotus_domino 86 vios 85 rational_software_architect_design_manager 81 api_connect 79 lotus_notes 71 security_key_lifecycle_manager 70 db2_universal_database 66 concert 65 smartcloud_control_desk 65 urbancode_deploy 63
Quick Filters
Critical CVEs With Exploits In CISA KEV