ibm
8,286 tracked vulnerabilities.
CVE-2024-28797
MEDIUM
IBM InfoSphere Information Server 11.7 - Stored Cross-Site Scripting
Jun 30, 2024
CVSS 6.4
EPSS 0.00
CVE-2024-35119
MEDIUM
IBM InfoSphere Information Server 11.7 - Sensitive Information Exposure via Stack Trace Error Message
Jun 30, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-31902
MEDIUM
IBM InfoSphere Information Server 11.7 - CSRF
Jun 30, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-28798
HIGH
IBM InfoSphere Information Server 11.7 - Stored Cross-Site Scripting
Jun 30, 2024
CVSS 7.2
EPSS 0.00
CVE-2024-28795
MEDIUM
IBM InfoSphere Information Server 11.7 - Stored Cross-Site Scripting
Jun 30, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-38322
MEDIUM
IBM Storage Defender - Resiliency Service <2.0.5 - Info Disclosure
Jun 28, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-35156
MEDIUM
IBM MQ 9.3.0.0-9.3.0.19 and 9.3.0.0-9.3.9.9 - Information Disclosure via Error Message
Jun 28, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-35116
MEDIUM
IBM MQ 9.0.0.0-9.0.0.25 and 9.3.0.0-9.3.x.x - Denial of Service via Configuration Change Error
Jun 28, 2024
CVSS 5.9
EPSS 0.01
CVE-2024-25053
MEDIUM
IBM Cognos Analytics <12.0.2 - Improper Certificate Validation
Jun 28, 2024
CVSS 5.9
EPSS 0.00
CVE-2024-25041
MEDIUM
IBM Cognos Analytics 11.2.0-11.2.3, 12.0.0-12.0.2 - Cross-Site Scripting in Cognos Assistant Column Headings
Jun 28, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-25031
MEDIUM
IBM Storage Defender - Resiliency Service <2.0.5 - Info Disclosure
Jun 28, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-35155
MEDIUM
IBM MQ Console 9.3 LTS and 9.3 CD - Sensitive Information Exposure via Detailed Error Messages
Jun 28, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-31919
MEDIUM
IBM MQ 9.0-9.3 - Denial of Service via MQBUFMH API Exit Message Processing
Jun 28, 2024
CVSS 5.9
EPSS 0.00
CVE-2024-31912
HIGH
IBM MQ 9.3 LTS and 9.3 CD - Authenticated Privilege Escalation via Incorrect Privilege Assignment
Jun 28, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-35139
MEDIUM
IBM Security Access Manager 10.0.0.0-10.0.7.1 - Sensitive Information Exposure via Incorrect Default Permissions
Jun 28, 2024
CVSS 6.2
EPSS 0.00
CVE-2024-35137
MEDIUM
IBM Security Access Manager Docker <10.0.8 - Privilege Escalation
Jun 28, 2024
CVSS 6.2
EPSS 0.00
CVE-2024-35153
MEDIUM
IBM WebSphere Application Server 8.5.0.0-8.5.5.25 - Cross-Site Scripting
Jun 27, 2024
CVSS 4.8
EPSS 0.00
CVE-2024-31916
HIGH
IBM OpenBMC FW1050.00-FW1050.10 - Info Disclosure
Jun 27, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-31883
MEDIUM
IBM Security Verify Access <10.0.7.1 - DoS
Jun 27, 2024
CVSS 5.3
EPSS 0.01
CVE-2024-38319
HIGH
IBM Security SOAR <51.0.2.0 - Code Injection
Jun 22, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-31890
HIGH
IBM TCP/IP <7.5 - Privilege Escalation
Jun 21, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-37532
HIGH
IBM WebSphere Application Server 8.5/9.0 - Identity Spoofing via Cryptographic Validation Flaw
Jun 20, 2024
CVSS 8.8
EPSS 0.00
CVE-2024-38329
HIGH
IBM Storage Protect for Virtual Environments - Auth Bypass
Jun 19, 2024
CVSS 7.7
EPSS 0.00
CVE-2024-31870
LOW
IBM Db2 for i <7.6 - Info Disclosure
Jun 15, 2024
CVSS 3.3
EPSS 0.00
CVE-2024-27275
HIGH
IBM i 7.2-7.5 - Incorrect Privilege Assignment in Physical File Trigger Configuration
Jun 15, 2024
CVSS 7.4
EPSS 0.00
Products
websphere_application_server 465
aix 400
db2 339
rational_quality_manager 202
sterling_b2b_integrator 195
qradar_security_information_and_event_manager 190
infosphere_information_server 189
maximo_asset_management 182
rational_doors_next_generation 153
rational_team_concert 142
rational_collaborative_lifecycle_management 141
rational_engineering_lifecycle_manager 141
websphere_portal 126
security_guardium 112
cognos_analytics 104
sterling_file_gateway 93
vios 92
rational_rhapsody_design_manager 90
security_verify_access 90
websphere_mq 89
business_process_manager 88
lotus_domino 86
api_connect 81
rational_software_architect_design_manager 81
lotus_notes 71
security_key_lifecycle_manager 70
db2_universal_database 66
concert 65
smartcloud_control_desk 65
urbancode_deploy 65
Quick Filters