ibm

8,286 tracked vulnerabilities.

CVE-2024-51464 MEDIUM
IBM i 7.3-7.5 - Authenticated Authentication Bypass via Navigator for i Interface
Dec 21, 2024
CVSS 4.3
EPSS 0.01
CVE-2024-51463 MEDIUM
IBM i 7.3, 7.4, and 7.5 - Server-Side Request Forgery
Dec 21, 2024
CVSS 5.4
EPSS 0.01
CVE-2024-51466 CRITICAL
IBM Cognos Analytics <11.2.4 FP4-12.0.4 - Code Injection
Dec 20, 2024
CVSS 9.0
EPSS 0.01
CVE-2024-40695 HIGH
IBM Cognos Analytics - Code Injection
Dec 20, 2024
CVSS 8.0
EPSS 0.00
CVE-2024-28767 MEDIUM
IBM Security Directory Integrator 7.2.0-7.2.0.13 and 10.0.0-10.0.3 - Authenticated OS Command Injection
Dec 20, 2024
CVSS 6.8
EPSS 0.01
CVE-2024-52897 MEDIUM
IBM MQ 9.2.0.0-9.2.0.29, 9.3.0-9.4.0 - Sensitive Information Exposure via Web Console Error Messages
Dec 19, 2024
CVSS 6.2
EPSS 0.00
CVE-2024-51471 MEDIUM
IBM MQ Appliance 9.3.0.0-9.3.0.25 and 9.3.0.0-9.3.99.99 - Authenticated Denial of Service via Trace Buffer Overflow
Dec 19, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-49336 MEDIUM
IBM Security Guardium 11.5 and 12.0 - Authenticated Server-Side Request Forgery
Dec 19, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-52896 MEDIUM
IBM MQ 9.2.0.0-9.2.0.29, 9.3.0-9.4.1.0 - Information Disclosure via Detailed Error Messages
Dec 19, 2024
CVSS 6.2
EPSS 0.00
CVE-2024-35141 HIGH
IBM Security Verify Access Docker <10.0.7 - Privilege Escalation
Dec 19, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-51470 MEDIUM
IBM MQ Appliance 9.1.0.0-9.1.0.25, 9.4.0.0-9.4.0.6 & MQ for HPE NonStop 8.1.0-8.1.0.25 - DoS via Improper Message Values
Dec 18, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-45082 MEDIUM
IBM Cognos Analytics <12.0.3 - Open Redirect
Dec 18, 2024
CVSS 6.8
EPSS 0.00
CVE-2024-41752 MEDIUM
IBM Cognos Analytics 11.2.0-11.2.4 and 12.0.0-12.0.3 - HTML Injection
Dec 18, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-25042 MEDIUM
IBM Cognos Analytics 11.2.0-11.2.4 and 12.0.0-12.0.3 - Cross-Site Scripting in Cognos Explorations Column Headings
Dec 18, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-52361 MEDIUM
IBM Storage Defender - Resiliency Service <2.0.10 - Info Disclosure
Dec 18, 2024
CVSS 5.7
EPSS 0.01
CVE-2024-47119 MEDIUM
IBM Storage Defender - Resiliency Service <2.0.10 - SSL Spoofing
Dec 18, 2024
CVSS 5.9
EPSS 0.00
CVE-2024-47104 MEDIUM
IBM i 7.4-7.5 - Privilege Escalation
Dec 18, 2024
CVSS 6.8
EPSS 0.00
CVE-2024-49820 LOW
IBM Security Guardium Key Lifecycle Manager <4.2.1 - Info Disclosure
Dec 17, 2024
CVSS 3.7
EPSS 0.00
CVE-2024-49819 MEDIUM
IBM Security Guardium Key Lifecycle Manager <4.2.1 - Info Disclosure
Dec 17, 2024
CVSS 4.1
EPSS 0.00
CVE-2024-49818 MEDIUM
IBM Security Guardium Key Lifecycle Manager <4.2.1 - Info Disclosure
Dec 17, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-49817 MEDIUM
IBM Security Guardium Key Lifecycle Manager <4.2.1 - Info Disclosure
Dec 17, 2024
CVSS 4.4
EPSS 0.00
CVE-2024-49816 MEDIUM
IBM Security Guardium Key Lifecycle Manager <4.2.1 - Info Disclosure
Dec 17, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-31892 HIGH
IBM Storage Scale GUI <5.2.1.1 - Privilege Escalation
Dec 14, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-31891 HIGH
IBM Storage Scale GUI <5.2.1.1 - Privilege Escalation
Dec 14, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-52901 MEDIUM
IBM InfoSphere Information Server 11.7 - Info Disclosure
Dec 12, 2024
CVSS 6.5
EPSS 0.01