ibm
8,286 tracked vulnerabilities.
CVE-2024-54171
HIGH
IBM EntireX 11.1 - Authenticated XML External Entity Injection
Feb 06, 2025
CVSS 7.1
EPSS 0.00
CVE-2024-52892
MEDIUM
IBM Jazz for Service Management 1.1.3-1.1.3.23 - Unauthenticated Stored Cross-Site Scripting
Feb 06, 2025
CVSS 6.1
EPSS 0.00
CVE-2024-51450
CRITICAL
IBM Security Verify Directory 10.0.0-10.0.3 - Authenticated OS Command Injection
Feb 06, 2025
CVSS 9.1
EPSS 0.01
CVE-2024-49814
HIGH
IBM Security Verify Access Appliance <10.0.4 - Privilege Escalation
Feb 06, 2025
CVSS 7.8
EPSS 0.00
CVE-2024-49800
MEDIUM
IBM ApplinX 11.1 - Authenticated Cleartext Storage of Sensitive Information in Memory
Feb 06, 2025
CVSS 4.3
EPSS 0.00
CVE-2024-49798
MEDIUM
IBM ApplinX 11.1 - Sensitive Information Exposure via Detailed Error Messages
Feb 06, 2025
CVSS 4.3
EPSS 0.00
CVE-2024-49797
MEDIUM
IBM ApplinX 11.1 - Sensitive Information Exposure via Missing HTTP Strict Transport Security
Feb 06, 2025
CVSS 5.9
EPSS 0.00
CVE-2024-49796
MEDIUM
IBM ApplinX 11.1 - Clickjacking
Feb 06, 2025
CVSS 5.4
EPSS 0.00
CVE-2024-49795
MEDIUM
IBM ApplinX 11.1 - Cross-Site Request Forgery
Feb 06, 2025
CVSS 4.3
EPSS 0.00
CVE-2024-49794
MEDIUM
IBM ApplinX 11.1 - Cross-Site Request Forgery
Feb 06, 2025
CVSS 4.3
EPSS 0.00
CVE-2024-49793
MEDIUM
IBM ApplinX 11.1 - Authenticated Stored Cross-Site Scripting
Feb 06, 2025
CVSS 5.4
EPSS 0.00
CVE-2024-49792
MEDIUM
IBM ApplinX 11.1 - Authenticated Stored Cross-Site Scripting
Feb 06, 2025
CVSS 5.4
EPSS 0.00
CVE-2024-49791
MEDIUM
IBM ApplinX 11.1 - Authenticated Stored Cross-Site Scripting
Feb 06, 2025
CVSS 6.4
EPSS 0.00
CVE-2024-56473
MEDIUM
IBM Aspera Shares 1.9.0-1.10.0 PL6 - IP Address Spoofing via Client-IP Header
Feb 05, 2025
CVSS 5.3
EPSS 0.00
CVE-2024-56472
MEDIUM
IBM Aspera Shares <1.10.0 PL6 - XSS
Feb 05, 2025
CVSS 6.4
EPSS 0.00
CVE-2024-56471
MEDIUM
IBM Aspera Shares <1.10.0 PL6 - SSRF
Feb 05, 2025
CVSS 5.4
EPSS 0.00
CVE-2024-56470
MEDIUM
IBM Aspera Shares <1.10.0 PL6 - SSRF
Feb 05, 2025
CVSS 5.4
EPSS 0.00
CVE-2024-38318
MEDIUM
IBM Aspera Shares <1.9.0-1.10.0 PL6 - XSS
Feb 05, 2025
CVSS 4.8
EPSS 0.00
CVE-2024-38317
MEDIUM
IBM Aspera Shares <1.10.0 PL6 - XSS
Feb 05, 2025
CVSS 4.8
EPSS 0.00
CVE-2024-38316
MEDIUM
IBM Aspera Shares <1.10.0 PL6 - DoS
Feb 05, 2025
CVSS 4.3
EPSS 0.00
CVE-2024-52365
MEDIUM
IBM Cloud Pak for Business Automation <22.0.2 - XSS
Feb 05, 2025
CVSS 6.4
EPSS 0.00
CVE-2024-52364
MEDIUM
IBM Cloud Pak for Business Automation <22.0.2 - XSS
Feb 05, 2025
CVSS 5.4
EPSS 0.00
CVE-2024-49348
MEDIUM
IBM Cloud Pak for Business Automation 18.0.0-22.0.2 - Incorrect Privilege Assignment via Task Reassignment
Feb 05, 2025
CVSS 4.3
EPSS 0.00
CVE-2024-49352
HIGH
IBM Cognos Analytics 11.2.0-11.2.4, 12.0.0-12.0.4 - XML External Entity Injection
Feb 05, 2025
CVSS 7.1
EPSS 0.00
CVE-2024-45658
LOW
IBM Security Verify Access 10.0.0-10.0.8 - Sensitive Information Exposure via Detailed Error Messages
Feb 04, 2025
CVSS 2.7
EPSS 0.00
Products
websphere_application_server 465
aix 400
db2 339
rational_quality_manager 202
sterling_b2b_integrator 195
qradar_security_information_and_event_manager 190
infosphere_information_server 189
maximo_asset_management 182
rational_doors_next_generation 153
rational_team_concert 142
rational_collaborative_lifecycle_management 141
rational_engineering_lifecycle_manager 141
websphere_portal 126
security_guardium 112
cognos_analytics 104
sterling_file_gateway 93
vios 92
rational_rhapsody_design_manager 90
security_verify_access 90
websphere_mq 89
business_process_manager 88
lotus_domino 86
api_connect 81
rational_software_architect_design_manager 81
lotus_notes 71
security_key_lifecycle_manager 70
db2_universal_database 66
concert 65
smartcloud_control_desk 65
urbancode_deploy 65
Quick Filters