ibm

8,286 tracked vulnerabilities.

CVE-2024-41761 MEDIUM
IBM Db2 10.5, 11.1, 11.5 - Denial of Service via Crafted Query
Nov 23, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-41781 MEDIUM
IBM PowerVM Hypervisor - Info Disclosure
Nov 22, 2024
CVSS 5.1
EPSS 0.00
CVE-2024-41779 CRITICAL
IBM Engineering Systems Design Rhapsody - Model Manager 7.0.2-7.0.3 - Remote Code Execution via Race Condition
Nov 22, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-45663 MEDIUM
IBM Db2 11.1, 11.5, 12.1 - Denial of Service via Specially Crafted Query
Nov 21, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-52360 HIGH
IBM Concert Software <1.0.3 - SQL Injection
Nov 19, 2024
CVSS 7.6
EPSS 0.00
CVE-2024-52359 MEDIUM
IBM Concert Software <1.0.3 - Privilege Escalation
Nov 19, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-37070 MEDIUM
IBM Concert Software <1.0.3 - Info Disclosure
Nov 19, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-39726 HIGH
IBM Engineering Lifecycle Optimization - Engineering Insights 7.0.2 and 7.0.3 - XML External Entity Injection
Nov 15, 2024
CVSS 8.2
EPSS 0.01
CVE-2024-41784 HIGH
IBM Sterling Secure Proxy <6.1.0.0 - Path Traversal
Nov 15, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-43189 MEDIUM
IBM Concert Software <1.0.2 - Info Disclosure
Nov 15, 2024
CVSS 5.9
EPSS 0.00
CVE-2024-41785 MEDIUM
IBM Concert 1.0.0-1.0.1 - Unauthenticated Stored Cross-Site Scripting
Nov 15, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-45670 MEDIUM
IBM Security SOAR < 51.0.2.0 - Weak Password Recovery Mechanism
Nov 14, 2024
CVSS 5.6
EPSS 0.00
CVE-2024-45642 MEDIUM
IBM Security ReaQta 3.12-3.12.11 - Stored Cross-Site Scripting in Web UI
Nov 14, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-45099 LOW
IBM Security ReaQta 3.12-3.12.11 - Stored Cross-Site Scripting in Web UI
Nov 14, 2024
CVSS 3.1
EPSS 0.00
CVE-2024-45087 MEDIUM
IBM WebSphere App Server 8.5-9.0 - XSS
Nov 11, 2024
CVSS 4.8
EPSS 0.00
CVE-2024-45088 MEDIUM
IBM Maximo Asset Mgmt <7.6.1.3 - XSS
Nov 11, 2024
CVSS 6.4
EPSS 0.00
CVE-2024-35146 MEDIUM
IBM Maximo Application Suite Monitor 8.10.11, 8.11.8, 9.0.0 - Unauthenticated Stored Cross-Site Scripting
Nov 06, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-45086 MEDIUM
IBM WebSphere App Server <9.0 - XXE
Nov 04, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-41745 MEDIUM
IBM CICS TX Standard - Unauthenticated Stored Cross-Site Scripting
Nov 01, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-41744 MEDIUM
IBM CICS TX Standard 11.1 - Cross-Site Request Forgery
Nov 01, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-41741 MEDIUM
IBM TXSeries for Multiplatforms 10.1 - Info Disclosure
Nov 01, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-41738 MEDIUM
IBM TXSeries for Multiplatforms 10.1 - Info Disclosure
Nov 01, 2024
CVSS 5.9
EPSS 0.00
CVE-2024-45656 CRITICAL
IBM Power System E1080 (9080-hex) Firmware - Hard-coded Credentials
Oct 29, 2024
CVSS 9.8
EPSS 0.00
CVE-2024-38314 MEDIUM
IBM Maximo Application Suite - Monitor Component <9.0 - Info Disclo...
Oct 24, 2024
CVSS 5.9
EPSS 0.00
CVE-2024-31880 MEDIUM
IBM Db2 10.5.0.0-10.5.10 and 11.5-11.5.8 - Authenticated Denial of Service via Crafted SQL Statement
Oct 23, 2024
CVSS 5.3
EPSS 0.00