ibm
8,286 tracked vulnerabilities.
CVE-2024-51460
MEDIUM
IBM InfoSphere Information Server 11.7 - Authenticated Sensitive Information Exposure via Stack Trace Error Message
Dec 11, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-35117
MEDIUM
IBM OpenPages with Watson 9.0 - Cleartext Storage of Sensitive Information in System Tracing Log Files
Dec 11, 2024
CVSS 4.4
EPSS 0.00
CVE-2024-47117
MEDIUM
IBM Carbon Charts 0.4.0-1.13.16 - Authenticated Stored Cross-Site Scripting
Dec 10, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-47107
MEDIUM
IBM QRadar SIEM 7.5 - Authenticated Stored Cross-Site Scripting
Dec 07, 2024
CVSS 6.4
EPSS 0.00
CVE-2024-41762
MEDIUM
IBM Db2 10.5.0-10.5.10 - Denial of Service via Specially Crafted Query
Dec 07, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-47115
HIGH
IBM AIX 7.2-7.3 and VIOS 3.1-4.1 - OS Command Injection
Dec 07, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-37071
MEDIUM
IBM Db2 10.5.0-10.5.10 - Authenticated Denial of Service via Specially Crafted Query
Dec 07, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-51465
HIGH
IBM App Connect Enterprise Certified Container 11.4-12.3 - Authenticated OS Command Injection
Dec 04, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-45676
MEDIUM
IBM Cognos Controller <11.0.2 - Info Disclosure
Dec 03, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-41777
HIGH
IBM Cognos Controller 11.0.0 and 11.0.1 - Use of Hard-coded Credentials
Dec 03, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-41776
MEDIUM
IBM Cognos Controller 11.0.0 and 11.0.1 - Cross-Site Request Forgery
Dec 03, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-41775
MEDIUM
IBM Cognos Controller 11.0.0 and 11.0.1 - Use of a Broken or Risky Cryptographic Algorithm
Dec 03, 2024
CVSS 5.9
EPSS 0.00
CVE-2024-25020
MEDIUM
IBM Cognos Controller <11.0.1 - Code Injection
Dec 03, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-40691
HIGH
IBM Cognos Controller 11.0.0-11.0.1 - Code Injection
Dec 03, 2024
CVSS 8.0
EPSS 0.00
CVE-2024-25036
MEDIUM
IBM Cognos Controller <11.0.1 - Auth Bypass
Dec 03, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-25035
MEDIUM
IBM Cognos Controller <11.0.2 - Info Disclosure
Dec 03, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-25019
MEDIUM
IBM Cognos Controller 11.0.0-11.0.1 - Code Injection
Dec 03, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-49806
CRITICAL
IBM Security Verify Access Appliance <10.0.9 - Info Disclosure
Nov 29, 2024
CVSS 9.4
EPSS 0.00
CVE-2024-49805
CRITICAL
IBM Security Verify Access Appliance <10.0.9 - Info Disclosure
Nov 29, 2024
CVSS 9.4
EPSS 0.00
CVE-2024-49804
HIGH
IBM Security Verify Access Appliance <10.0.9 - Privilege Escalation
Nov 29, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-49803
CRITICAL
IBM Security Verify Access Appliance 10.0.0-10.0.8 - Command Injection
Nov 29, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-49353
HIGH
IBM Watson Speech Services Cartridge 4.0.0-5.0.2 Race Condition via Concurrent Access
Nov 26, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-49351
MEDIUM
IBM Workload Scheduler <10.3 - Info Disclosure
Nov 26, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-52899
HIGH
IBM Data Virtualization Manager for z/OS 1.1-1.2 - Authenticated Remote Code Execution via JDBC URL Parameter Injection
Nov 26, 2024
CVSS 8.5
EPSS 0.01
CVE-2024-35160
MEDIUM
IBM Watson Query and Db2 Big SQL on Cloud Pak for Data - Insufficient Session Expiration
Nov 23, 2024
CVSS 4.3
EPSS 0.00
Products
websphere_application_server 465
aix 400
db2 339
rational_quality_manager 202
sterling_b2b_integrator 195
qradar_security_information_and_event_manager 190
infosphere_information_server 189
maximo_asset_management 182
rational_doors_next_generation 153
rational_team_concert 142
rational_collaborative_lifecycle_management 141
rational_engineering_lifecycle_manager 141
websphere_portal 126
security_guardium 112
cognos_analytics 104
sterling_file_gateway 93
vios 92
rational_rhapsody_design_manager 90
security_verify_access 90
websphere_mq 89
business_process_manager 88
lotus_domino 86
api_connect 81
rational_software_architect_design_manager 81
lotus_notes 71
security_key_lifecycle_manager 70
db2_universal_database 66
concert 65
smartcloud_control_desk 65
urbancode_deploy 65
Quick Filters