ibm

8,153 tracked vulnerabilities.

CVE-2025-36258 HIGH
IBM InfoSphere Information Server is vulnerable due to plaintext storage of a password
Mar 25, 2026
CVSS 7.1
EPSS 0.00
CVE-2025-14974 MEDIUM
IBM InfoSphere Information Server is vulnerable due to Insecure Direct Object Reference
Mar 25, 2026
CVSS 5.7
EPSS 0.00
CVE-2025-14917 MEDIUM
IBM WebSphere Application Server Liberty could provide weaker than expected security
Mar 25, 2026
CVSS 6.7
EPSS 0.00
CVE-2025-14915 MEDIUM
IBM WebSphere Application Server Liberty is affected by a privilege escalation vulnerability
Mar 25, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-14912 MEDIUM
IBM InfoSphere Information Server is vulnerable to server-side request forgery
Mar 25, 2026
CVSS 5.4
EPSS 0.00
CVE-2025-14810 MEDIUM
IBM InfoSphere Information Server is vulnerable due to insufficient session expiration
Mar 25, 2026
CVSS 6.3
EPSS 0.00
CVE-2025-14808 LOW
IBM InfoSphere Information Server is vulnerable due to disclosure of sensitive information
Mar 25, 2026
CVSS 3.1
EPSS 0.00
CVE-2025-14807 MEDIUM
IBM InfoSphere Information Server is vulnerable to HTTP header injection
Mar 25, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-14790 MEDIUM
IBM InfoSphere Information Server is vulnerable to disclosure of sensitive information
Mar 25, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-12708 MEDIUM
IBM Concert 1.0.0-2.2.0 - Hard-Coded Credentials
Mar 25, 2026
CVSS 6.2
EPSS 0.00
CVE-2025-36051 MEDIUM
IBM QRadar SIEM Information Disclosure
Mar 19, 2026
CVSS 6.2
EPSS 0.00
CVE-2025-15051 MEDIUM
IBM QRadar SIEM Cross-Site Scripting
Mar 19, 2026
CVSS 5.4
EPSS 0.00
CVE-2025-13995 MEDIUM
IBM QRadar SIEM Information Disclosure
Mar 19, 2026
CVSS 5.0
EPSS 0.00
CVE-2025-14031 HIGH
IBM Sterling B2B Integrator and IBM Sterling File Gateway Denial of Service
Mar 17, 2026
CVSS 7.5
EPSS 0.00
CVE-2025-14806 MEDIUM
IBM Planning Analytics Information Disclosure
Mar 17, 2026
CVSS 5.7
EPSS 0.00
CVE-2025-13460 MEDIUM
IBM Aspera Console Information Disclosure
Mar 16, 2026
CVSS 5.3
EPSS 0.00
CVE-2025-13459 LOW
IBM Aspera Console Denial of Service
Mar 16, 2026
CVSS 2.7
EPSS 0.00
CVE-2025-13212 MEDIUM
IBM Aspera Console Denial of Service
Mar 16, 2026
CVSS 5.3
EPSS 0.00
CVE-2025-36368 MEDIUM
IBM Sterling B2B Integrator 6.1.0.0-6.1.2.7_2 - SQL Injection
Mar 13, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-14811 LOW
IBM Sterling Partner Engagement Manager 6.2.3.0-6.2.3.5/6.2.4.0-6.2.4.2 - Info Disclosure
Mar 13, 2026
CVSS 3.1
EPSS 0.00
CVE-2025-14504 MEDIUM
IBM Sterling B2B Integrator 6.1.0.0-6.1.2.7_2 - XSS
Mar 13, 2026
CVSS 5.4
EPSS 0.00
CVE-2025-14483 MEDIUM
IBM Sterling B2B Integrator 6.1.0.0-6.1.2.7_2 - Info Disclosure
Mar 13, 2026
CVSS 4.3
EPSS 0.00
CVE-2025-13726 MEDIUM
IBM Sterling Partner Engagement Manager 6.2.3.0-6.2.3.5/6.2.4.0-6.2.4.2 - Info Disclosure
Mar 13, 2026
CVSS 5.3
EPSS 0.00
CVE-2025-13723 MEDIUM
IBM Sterling Partner Engagement Manager 6.2.3.0-6.2.3.5/6.2.4.0-6.2.4.2 - Info Disclosure
Mar 13, 2026
CVSS 5.3
EPSS 0.00
CVE-2025-13718 LOW
IBM Sterling Partner Engagement Manager 6.2.3.0-6.2.3.5/6.2.4.0-6.2.4.2 - Info Disclosure
Mar 13, 2026
CVSS 3.7
EPSS 0.00
Products
websphere_application_server 444 aix 393 db2 327 rational_quality_manager 202 sterling_b2b_integrator 195 infosphere_information_server 188 qradar_security_information_and_event_manager 187 maximo_asset_management 182 rational_doors_next_generation 153 rational_team_concert 142 rational_collaborative_lifecycle_management 141 rational_engineering_lifecycle_manager 141 websphere_portal 126 security_guardium 112 cognos_analytics 102 sterling_file_gateway 93 rational_rhapsody_design_manager 90 security_verify_access 90 websphere_mq 89 business_process_manager 88 lotus_domino 86 vios 85 rational_software_architect_design_manager 81 api_connect 79 lotus_notes 71 security_key_lifecycle_manager 70 db2_universal_database 66 concert 65 smartcloud_control_desk 65 urbancode_deploy 63
Quick Filters
Critical CVEs With Exploits In CISA KEV