ibm

8,153 tracked vulnerabilities.

CVE-2024-52366 MEDIUM
IBM Concert Software <1.0.4 - Info Disclosure
Jan 07, 2025
CVSS 5.9
EPSS 0.00
CVE-2024-51472 LOW
IBM UrbanCode Deploy 7.2-7.2.3.13 and IBM DevOps Deploy 8.0-8.0.1.3 - HTML Injection in Web UI
Jan 06, 2025
CVSS 3.1
EPSS 0.00
CVE-2024-31914 MEDIUM
IBM Sterling B2B Integrator Standard Edition - XSS
Jan 06, 2025
CVSS 6.4
EPSS 0.00
CVE-2024-31913 MEDIUM
IBM Sterling B2B Integrator Standard Edition - XSS
Jan 06, 2025
CVSS 5.5
EPSS 0.00
CVE-2024-41768 MEDIUM
IBM Engineering Lifecycle Optimization - Publishing <7.0.3 - Info D...
Jan 04, 2025
CVSS 6.5
EPSS 0.00
CVE-2024-41767 HIGH
IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 - SQL Injection
Jan 04, 2025
CVSS 7.3
EPSS 0.00
CVE-2024-41766 HIGH
IBM Engineering Lifecycle Optimization - Publishing 7.0.2/7.0.3 DoS via Regex Complexity
Jan 04, 2025
CVSS 7.5
EPSS 0.00
CVE-2024-41765 MEDIUM
IBM Engineering Lifecycle Optimization - Publishing 7.0.2-7.0.3 - Path Traversal via URL Request
Jan 04, 2025
CVSS 6.5
EPSS 0.00
CVE-2024-41763 MEDIUM
IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 - Use of a Broken or Risky Cryptographic Algorithm
Jan 04, 2025
CVSS 5.9
EPSS 0.00
CVE-2024-55897 MEDIUM
IBM PowerHA SystemMirror for i <7.4-7.5 - Open Redirect
Jan 03, 2025
CVSS 4.3
EPSS 0.00
CVE-2024-55896 MEDIUM
IBM PowerHA SystemMirror - Info Disclosure
Jan 03, 2025
CVSS 5.4
EPSS 0.00
CVE-2024-5591 MEDIUM
IBM Jazz Foundation 7.0.2, 7.0.3, 7.1.0 - Sensitive Information Exposure via Error Message
Jan 03, 2025
CVSS 4.3
EPSS 0.00
CVE-2024-41780 MEDIUM
IBM Jazz Foundation <7.1.0 - Info Disclosure
Jan 03, 2025
CVSS 4.2
EPSS 0.00
CVE-2024-54181 HIGH
IBM WebSphere Automation 1.7.5 - RCE
Dec 30, 2024
CVSS 7.2
EPSS 0.00
CVE-2024-52906 MEDIUM
IBM AIX 7.2-7.3 and VIOS 3.1-4.1 - Denial of Service via TCP/IP Kernel Extension
Dec 25, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-47102 MEDIUM
IBM AIX 7.2-7.3 and VIOS 3.1-4.1 - Denial of Service via perfstat Kernel Extension
Dec 25, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-39727 MEDIUM
IBM Engineering Lifecycle Optimization - Engineering Insights <7.0....
Dec 25, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-39725 MEDIUM
IBM Engineering Lifecycle Optimization - Engineering Insights 7.0.2/7.0.3 Sensitive Information Exposure
Dec 25, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-51464 MEDIUM
IBM i 7.3-7.5 - Authenticated Authentication Bypass via Navigator for i Interface
Dec 21, 2024
CVSS 4.3
EPSS 0.01
CVE-2024-51463 MEDIUM
IBM i 7.3, 7.4, and 7.5 - Server-Side Request Forgery
Dec 21, 2024
CVSS 5.4
EPSS 0.03
CVE-2024-51466 CRITICAL
IBM Cognos Analytics <11.2.4 FP4-12.0.4 - Code Injection
Dec 20, 2024
CVSS 9.0
EPSS 0.00
CVE-2024-40695 HIGH
IBM Cognos Analytics - Code Injection
Dec 20, 2024
CVSS 8.0
EPSS 0.00
CVE-2024-28767 MEDIUM
IBM Security Directory Integrator 7.2.0-7.2.0.13 and 10.0.0-10.0.3 - Authenticated OS Command Injection
Dec 20, 2024
CVSS 6.8
EPSS 0.00
CVE-2024-52897 MEDIUM
IBM MQ 9.2.0.0-9.2.0.29, 9.3.0-9.4.0 - Sensitive Information Exposure via Web Console Error Messages
Dec 19, 2024
CVSS 6.2
EPSS 0.00
CVE-2024-51471 MEDIUM
IBM MQ Appliance 9.3.0.0-9.3.0.25 and 9.3.0.0-9.3.99.99 - Authenticated Denial of Service via Trace Buffer Overflow
Dec 19, 2024
CVSS 5.3
EPSS 0.00
Products
websphere_application_server 444 aix 393 db2 327 rational_quality_manager 202 sterling_b2b_integrator 195 infosphere_information_server 188 qradar_security_information_and_event_manager 187 maximo_asset_management 182 rational_doors_next_generation 153 rational_team_concert 142 rational_collaborative_lifecycle_management 141 rational_engineering_lifecycle_manager 141 websphere_portal 126 security_guardium 112 cognos_analytics 102 sterling_file_gateway 93 rational_rhapsody_design_manager 90 security_verify_access 90 websphere_mq 89 business_process_manager 88 lotus_domino 86 vios 85 rational_software_architect_design_manager 81 api_connect 79 lotus_notes 71 security_key_lifecycle_manager 70 db2_universal_database 66 concert 65 smartcloud_control_desk 65 urbancode_deploy 63
Quick Filters
Critical CVEs With Exploits In CISA KEV