ibm

8,153 tracked vulnerabilities.

CVE-2024-49336 MEDIUM
IBM Security Guardium 11.5 and 12.0 - Authenticated Server-Side Request Forgery
Dec 19, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-52896 MEDIUM
IBM MQ 9.2.0.0-9.2.0.29, 9.3.0-9.4.1.0 - Information Disclosure via Detailed Error Messages
Dec 19, 2024
CVSS 6.2
EPSS 0.00
CVE-2024-35141 HIGH
IBM Security Verify Access Docker <10.0.7 - Privilege Escalation
Dec 19, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-51470 MEDIUM
IBM MQ Appliance 9.1.0.0-9.1.0.25, 9.4.0.0-9.4.0.6 & MQ for HPE NonStop 8.1.0-8.1.0.25 - DoS via Improper Message Values
Dec 18, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-45082 MEDIUM
IBM Cognos Analytics <12.0.3 - Open Redirect
Dec 18, 2024
CVSS 6.8
EPSS 0.00
CVE-2024-41752 MEDIUM
IBM Cognos Analytics 11.2.0-11.2.4 and 12.0.0-12.0.3 - HTML Injection
Dec 18, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-25042 MEDIUM
IBM Cognos Analytics 11.2.0-11.2.4 and 12.0.0-12.0.3 - Cross-Site Scripting in Cognos Explorations Column Headings
Dec 18, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-52361 MEDIUM
IBM Storage Defender - Resiliency Service <2.0.10 - Info Disclosure
Dec 18, 2024
CVSS 5.7
EPSS 0.00
CVE-2024-47119 MEDIUM
IBM Storage Defender - Resiliency Service <2.0.10 - SSL Spoofing
Dec 18, 2024
CVSS 5.9
EPSS 0.00
CVE-2024-47104 MEDIUM
IBM i 7.4-7.5 - Privilege Escalation
Dec 18, 2024
CVSS 6.8
EPSS 0.00
CVE-2024-49820 LOW
IBM Security Guardium Key Lifecycle Manager <4.2.1 - Info Disclosure
Dec 17, 2024
CVSS 3.7
EPSS 0.00
CVE-2024-49819 MEDIUM
IBM Security Guardium Key Lifecycle Manager <4.2.1 - Info Disclosure
Dec 17, 2024
CVSS 4.1
EPSS 0.00
CVE-2024-49818 MEDIUM
IBM Security Guardium Key Lifecycle Manager <4.2.1 - Info Disclosure
Dec 17, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-49817 MEDIUM
IBM Security Guardium Key Lifecycle Manager <4.2.1 - Info Disclosure
Dec 17, 2024
CVSS 4.4
EPSS 0.00
CVE-2024-49816 MEDIUM
IBM Security Guardium Key Lifecycle Manager <4.2.1 - Info Disclosure
Dec 17, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-31892 HIGH
IBM Storage Scale GUI <5.2.1.1 - Privilege Escalation
Dec 14, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-31891 HIGH
IBM Storage Scale GUI <5.2.1.1 - Privilege Escalation
Dec 14, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-52901 MEDIUM
IBM InfoSphere Information Server 11.7 - Info Disclosure
Dec 12, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-51460 MEDIUM
IBM InfoSphere Information Server 11.7 - Authenticated Sensitive Information Exposure via Stack Trace Error Message
Dec 11, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-35117 MEDIUM
IBM OpenPages with Watson 9.0 - Cleartext Storage of Sensitive Information in System Tracing Log Files
Dec 11, 2024
CVSS 4.4
EPSS 0.00
CVE-2024-47117 MEDIUM
IBM Carbon Charts 0.4.0-1.13.16 - Authenticated Stored Cross-Site Scripting
Dec 10, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-47107 MEDIUM
IBM QRadar SIEM 7.5 - Authenticated Stored Cross-Site Scripting
Dec 07, 2024
CVSS 6.4
EPSS 0.00
CVE-2024-41762 MEDIUM
IBM Db2 10.5.0-10.5.10 - Denial of Service via Specially Crafted Query
Dec 07, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-47115 HIGH
IBM AIX 7.2-7.3 and VIOS 3.1-4.1 - OS Command Injection
Dec 07, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-37071 MEDIUM
IBM Db2 10.5.0-10.5.10 - Authenticated Denial of Service via Specially Crafted Query
Dec 07, 2024
CVSS 5.3
EPSS 0.00
Products
websphere_application_server 444 aix 393 db2 327 rational_quality_manager 202 sterling_b2b_integrator 195 infosphere_information_server 188 qradar_security_information_and_event_manager 187 maximo_asset_management 182 rational_doors_next_generation 153 rational_team_concert 142 rational_collaborative_lifecycle_management 141 rational_engineering_lifecycle_manager 141 websphere_portal 126 security_guardium 112 cognos_analytics 102 sterling_file_gateway 93 rational_rhapsody_design_manager 90 security_verify_access 90 websphere_mq 89 business_process_manager 88 lotus_domino 86 vios 85 rational_software_architect_design_manager 81 api_connect 79 lotus_notes 71 security_key_lifecycle_manager 70 db2_universal_database 66 concert 65 smartcloud_control_desk 65 urbancode_deploy 63
Quick Filters
Critical CVEs With Exploits In CISA KEV