ibm

8,286 tracked vulnerabilities.

CVE-2024-35133 MEDIUM
IBM Security Verify Access 10.0.0-10.0.8 - Authenticated Open Redirect via OIDC Provider
Aug 29, 2024
CVSS 6.8
EPSS 0.02
CVE-2024-35118 MEDIUM
IBM MaaS360 for Android 6.31-8.60 - Use of Hard-coded Credentials
Aug 29, 2024
CVSS 4.6
EPSS 0.00
CVE-2024-39746 MEDIUM
IBM Sterling Connect:Direct Web Services 6.0-6.3 - Cleartext Transmission of Sensitive Information
Aug 22, 2024
CVSS 5.9
EPSS 0.00
CVE-2024-39745 MEDIUM
IBM Sterling Connect:Direct Web Services 6.0-6.3 - Use of a Broken or Risky Cryptographic Algorithm
Aug 22, 2024
CVSS 5.9
EPSS 0.00
CVE-2024-39744 MEDIUM
IBM Sterling Connect:Direct Web Services 6.0-6.3 - Cross-Site Request Forgery
Aug 22, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-35151 MEDIUM
IBM OpenPages with Watson 8.3 and 9.0 - Authenticated Sensitive Information Exposure via API Authorization Bypass
Aug 22, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-41773 MEDIUM
IBM Global Configuration Management <7.0.3 - Privilege Escalation
Aug 20, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-40705 MEDIUM
IBM InfoSphere Information Server - Info Disclosure
Aug 15, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-40704 MEDIUM
IBM InfoSphere Information Server 11.7 - Info Disclosure
Aug 15, 2024
CVSS 4.9
EPSS 0.01
CVE-2024-31905 MEDIUM
IBM QRadar Network Packet Capture <7.5 - Info Disclosure
Aug 15, 2024
CVSS 5.9
EPSS 0.00
CVE-2024-25024 MEDIUM
IBM QRadar Suite Software <1.10.23.0 & Cloud Pak for Security <1.10...
Aug 15, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-37529 MEDIUM
IBM Db2 11.1-11.5 - Authenticated Denial of Service via Crafted Query
Aug 14, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-35152 MEDIUM
IBM Db2 - Denial of Service via Specially Crafted Query
Aug 14, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-35136 MEDIUM
IBM Db2 10.5-11.5 - Denial of Service via Specially Crafted Query
Aug 14, 2024
CVSS 5.3
EPSS 0.01
CVE-2024-31882 MEDIUM
IBM Db2 11.1-11.5 - Authenticated Denial of Service via Crafted SQL Statement
Aug 14, 2024
CVSS 5.3
EPSS 0.01
CVE-2024-28799 MEDIUM
IBM QRadar Suite Software <1.10.23.0 - Info Disclosure
Aug 14, 2024
CVSS 5.6
EPSS 0.00
CVE-2024-27267 MEDIUM
IBM SDK Java Technology Edition <8.0.8.26 - DoS
Aug 14, 2024
CVSS 5.9
EPSS 0.00
CVE-2024-35124 HIGH
IBM OpenBMC fw1020.00-fw1020.60 - Unauthenticated Administrative Access via Default Password
Aug 13, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-41774 MEDIUM
IBM Common Licensing 9.0 - Stored Cross-Site Scripting
Aug 13, 2024
CVSS 4.8
EPSS 0.00
CVE-2024-40697 HIGH
IBM Common Licensing 9.0 - Info Disclosure
Aug 13, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-39751 MEDIUM
IBM InfoSphere Information Server 11.7 - Sensitive Information Exposure via Detailed Error Messages
Aug 06, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-35143 MEDIUM
IBM Planning Analytics Local 2.0-2.1 - Unauthenticated Database Access via MongoDB
Aug 04, 2024
CVSS 6.7
EPSS 0.00
CVE-2024-38321 MEDIUM
IBM Business Automation Workflow <24.0.0 - Info Disclosure
Aug 03, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-40689 MEDIUM
IBM InfoSphere Information Server 11.7 - SQL Injection
Jul 26, 2024
CVSS 6.0
EPSS 0.01
CVE-2024-28772 MEDIUM
IBM Security Directory Integrator 7.2.0 & Verify Directory Integrator 10.0.0 - Stored XSS
Jul 25, 2024
CVSS 6.8
EPSS 0.00