ibm
8,153 tracked vulnerabilities.
CVE-2024-51465
HIGH
IBM App Connect Enterprise Certified Container 11.4-12.3 - Authenticated OS Command Injection
Dec 04, 2024
CVSS 8.8
EPSS 0.00
CVE-2024-45676
MEDIUM
IBM Cognos Controller <11.0.2 - Info Disclosure
Dec 03, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-41777
HIGH
IBM Cognos Controller 11.0.0 and 11.0.1 - Use of Hard-coded Credentials
Dec 03, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-41776
MEDIUM
IBM Cognos Controller 11.0.0 and 11.0.1 - Cross-Site Request Forgery
Dec 03, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-41775
MEDIUM
IBM Cognos Controller 11.0.0 and 11.0.1 - Use of a Broken or Risky Cryptographic Algorithm
Dec 03, 2024
CVSS 5.9
EPSS 0.00
CVE-2024-25020
MEDIUM
IBM Cognos Controller <11.0.1 - Code Injection
Dec 03, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-40691
HIGH
IBM Cognos Controller 11.0.0-11.0.1 - Code Injection
Dec 03, 2024
CVSS 8.0
EPSS 0.00
CVE-2024-25036
MEDIUM
IBM Cognos Controller <11.0.1 - Auth Bypass
Dec 03, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-25035
MEDIUM
IBM Cognos Controller <11.0.2 - Info Disclosure
Dec 03, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-25019
MEDIUM
IBM Cognos Controller 11.0.0-11.0.1 - Code Injection
Dec 03, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-49806
CRITICAL
IBM Security Verify Access Appliance <10.0.9 - Info Disclosure
Nov 29, 2024
CVSS 9.4
EPSS 0.00
CVE-2024-49805
CRITICAL
IBM Security Verify Access Appliance <10.0.9 - Info Disclosure
Nov 29, 2024
CVSS 9.4
EPSS 0.00
CVE-2024-49804
HIGH
IBM Security Verify Access Appliance <10.0.9 - Privilege Escalation
Nov 29, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-49803
CRITICAL
IBM Security Verify Access Appliance 10.0.0-10.0.8 - Command Injection
Nov 29, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-49353
HIGH
IBM Watson Speech Services Cartridge 4.0.0-5.0.2 Race Condition via Concurrent Access
Nov 26, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-49351
MEDIUM
IBM Workload Scheduler <10.3 - Info Disclosure
Nov 26, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-52899
HIGH
IBM Data Virtualization Manager for z/OS 1.1-1.2 - Authenticated Remote Code Execution via JDBC URL Parameter Injection
Nov 26, 2024
CVSS 8.5
EPSS 0.00
CVE-2024-35160
MEDIUM
IBM Watson Query and Db2 Big SQL on Cloud Pak for Data - Insufficient Session Expiration
Nov 23, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-41761
MEDIUM
IBM Db2 10.5, 11.1, 11.5 - Denial of Service via Crafted Query
Nov 23, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-41781
MEDIUM
IBM PowerVM Hypervisor - Info Disclosure
Nov 22, 2024
CVSS 5.1
EPSS 0.00
CVE-2024-41779
CRITICAL
IBM Engineering Systems Design Rhapsody - Model Manager 7.0.2-7.0.3 - Remote Code Execution via Race Condition
Nov 22, 2024
CVSS 9.8
EPSS 0.00
CVE-2024-45663
MEDIUM
IBM Db2 11.1, 11.5, 12.1 - Denial of Service via Specially Crafted Query
Nov 21, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-52360
HIGH
IBM Concert Software <1.0.3 - SQL Injection
Nov 19, 2024
CVSS 7.6
EPSS 0.00
CVE-2024-52359
MEDIUM
IBM Concert Software <1.0.3 - Privilege Escalation
Nov 19, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-37070
MEDIUM
IBM Concert Software <1.0.3 - Info Disclosure
Nov 19, 2024
CVSS 4.3
EPSS 0.00
Products
websphere_application_server 444
aix 393
db2 327
rational_quality_manager 202
sterling_b2b_integrator 195
infosphere_information_server 188
qradar_security_information_and_event_manager 187
maximo_asset_management 182
rational_doors_next_generation 153
rational_team_concert 142
rational_collaborative_lifecycle_management 141
rational_engineering_lifecycle_manager 141
websphere_portal 126
security_guardium 112
cognos_analytics 102
sterling_file_gateway 93
rational_rhapsody_design_manager 90
security_verify_access 90
websphere_mq 89
business_process_manager 88
lotus_domino 86
vios 85
rational_software_architect_design_manager 81
api_connect 79
lotus_notes 71
security_key_lifecycle_manager 70
db2_universal_database 66
concert 65
smartcloud_control_desk 65
urbancode_deploy 63
Quick Filters