ibm

8,286 tracked vulnerabilities.

CVE-2024-51460 MEDIUM
IBM InfoSphere Information Server 11.7 - Authenticated Sensitive Information Exposure via Stack Trace Error Message
Dec 11, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-35117 MEDIUM
IBM OpenPages with Watson 9.0 - Cleartext Storage of Sensitive Information in System Tracing Log Files
Dec 11, 2024
CVSS 4.4
EPSS 0.00
CVE-2024-47117 MEDIUM
IBM Carbon Charts 0.4.0-1.13.16 - Authenticated Stored Cross-Site Scripting
Dec 10, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-47107 MEDIUM
IBM QRadar SIEM 7.5 - Authenticated Stored Cross-Site Scripting
Dec 07, 2024
CVSS 6.4
EPSS 0.00
CVE-2024-41762 MEDIUM
IBM Db2 10.5.0-10.5.10 - Denial of Service via Specially Crafted Query
Dec 07, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-47115 HIGH
IBM AIX 7.2-7.3 and VIOS 3.1-4.1 - OS Command Injection
Dec 07, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-37071 MEDIUM
IBM Db2 10.5.0-10.5.10 - Authenticated Denial of Service via Specially Crafted Query
Dec 07, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-51465 HIGH
IBM App Connect Enterprise Certified Container 11.4-12.3 - Authenticated OS Command Injection
Dec 04, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-45676 MEDIUM
IBM Cognos Controller <11.0.2 - Info Disclosure
Dec 03, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-41777 HIGH
IBM Cognos Controller 11.0.0 and 11.0.1 - Use of Hard-coded Credentials
Dec 03, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-41776 MEDIUM
IBM Cognos Controller 11.0.0 and 11.0.1 - Cross-Site Request Forgery
Dec 03, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-41775 MEDIUM
IBM Cognos Controller 11.0.0 and 11.0.1 - Use of a Broken or Risky Cryptographic Algorithm
Dec 03, 2024
CVSS 5.9
EPSS 0.00
CVE-2024-25020 MEDIUM
IBM Cognos Controller <11.0.1 - Code Injection
Dec 03, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-40691 HIGH
IBM Cognos Controller 11.0.0-11.0.1 - Code Injection
Dec 03, 2024
CVSS 8.0
EPSS 0.00
CVE-2024-25036 MEDIUM
IBM Cognos Controller <11.0.1 - Auth Bypass
Dec 03, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-25035 MEDIUM
IBM Cognos Controller <11.0.2 - Info Disclosure
Dec 03, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-25019 MEDIUM
IBM Cognos Controller 11.0.0-11.0.1 - Code Injection
Dec 03, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-49806 CRITICAL
IBM Security Verify Access Appliance <10.0.9 - Info Disclosure
Nov 29, 2024
CVSS 9.4
EPSS 0.00
CVE-2024-49805 CRITICAL
IBM Security Verify Access Appliance <10.0.9 - Info Disclosure
Nov 29, 2024
CVSS 9.4
EPSS 0.00
CVE-2024-49804 HIGH
IBM Security Verify Access Appliance <10.0.9 - Privilege Escalation
Nov 29, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-49803 CRITICAL
IBM Security Verify Access Appliance 10.0.0-10.0.8 - Command Injection
Nov 29, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-49353 HIGH
IBM Watson Speech Services Cartridge 4.0.0-5.0.2 Race Condition via Concurrent Access
Nov 26, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-49351 MEDIUM
IBM Workload Scheduler <10.3 - Info Disclosure
Nov 26, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-52899 HIGH
IBM Data Virtualization Manager for z/OS 1.1-1.2 - Authenticated Remote Code Execution via JDBC URL Parameter Injection
Nov 26, 2024
CVSS 8.5
EPSS 0.01
CVE-2024-35160 MEDIUM
IBM Watson Query and Db2 Big SQL on Cloud Pak for Data - Insufficient Session Expiration
Nov 23, 2024
CVSS 4.3
EPSS 0.00