ibm

8,170 tracked vulnerabilities.

CVE-2023-42014 MEDIUM
IBM Sterling B2B Integrator 6.0.0.0-6.2.0.2 - Authenticated Stored Cross-Site Scripting
Jun 27, 2024
CVSS 5.4
EPSS 0.00
CVE-2023-42011 MEDIUM
IBM Sterling B2B Integrator Standard Edition 6.1-6.2 - Info Disclosure
Jun 27, 2024
CVSS 4.3
EPSS 0.00
CVE-2023-38371 MEDIUM
IBM Security Access Manager Docker <10.0.8 - Info Disclosure
Jun 27, 2024
CVSS 5.9
EPSS 0.00
CVE-2023-30430 MEDIUM
IBM Security Verify Access 10.0.0-10.0.7.1 - Sensitive Information Exposure in Trace Logs
Jun 27, 2024
CVSS 5.5
EPSS 0.00
CVE-2023-47726 HIGH
IBM QRadar Suite Software <1.10.21.0 - Command Injection
Jun 18, 2024
CVSS 7.1
EPSS 0.00
CVE-2023-29267 MEDIUM
IBM Db2 10.5, 11.1, 11.5 - Authenticated Denial of Service via Crafted SQL Statement
Jun 12, 2024
CVSS 5.3
EPSS 0.00
CVE-2023-45188 MEDIUM
IBM Engineering Lifecycle Optimization Publishing 7.0.2 and 7.0.3 - Unrestricted Upload of File with Dangerous Type
Jun 09, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-45192 HIGH
IBM Engineering Requirements Management DOORS Next 7.0.2 and 7.0.3 - XML External Entity Injection
Jun 06, 2024
CVSS 8.2
EPSS 0.00
CVE-2023-42005 HIGH
IBM Db2 and Db2 Warehouse on Cloud Pak for Data 3.5-4.8 - Unauthenticated System Call Execution
May 29, 2024
CVSS 7.4
EPSS 0.00
CVE-2023-37411 MEDIUM
IBM Aspera Faspex 5.0.0-5.0.6 - Stored Cross-Site Scripting in Web UI
May 28, 2024
CVSS 4.8
EPSS 0.00
CVE-2023-47710 MEDIUM
IBM Security Guardium 11.4, 11.5, and 12.0 - Stored Cross-Site Scripting
May 24, 2024
CVSS 5.4
EPSS 0.00
CVE-2023-47717 MEDIUM
IBM Security Guardium 12.0 - Denial of Service
May 16, 2024
CVSS 4.4
EPSS 0.00
CVE-2023-47712 HIGH
IBM Security Guardium 11.3-12.0 - Privilege Escalation via Improper Permissions Control
May 14, 2024
CVSS 7.8
EPSS 0.00
CVE-2023-47711 LOW
IBM Security Guardium 11.3-12.0 - Authenticated Denial of Service via File Upload
May 14, 2024
CVSS 2.7
EPSS 0.00
CVE-2023-47709 CRITICAL
IBM Security Guardium 11.3-12.0 - Authenticated OS Command Injection
May 14, 2024
CVSS 9.1
EPSS 0.00
CVE-2023-43040 MEDIUM
IBM Spectrum Fusion HCI 2.5.2-2.7.2 - Privilege Escalation
May 14, 2024
CVSS 6.5
EPSS 0.06
CVE-2023-38264 MEDIUM
IBM SDK Java 7.1.0.0-7.1.5.21 & 8.0.0.0-8.0.8.21 - DoS via ORB Deserialization Filter Bypass
May 14, 2024
CVSS 5.9
EPSS 0.00
CVE-2023-40694 MEDIUM
IBM Watson CP4D Data Stores <4.9 - Info Disclosure
May 07, 2024
CVSS 6.2
EPSS 0.00
CVE-2023-27283 MEDIUM
IBM Aspera Orchestrator 4.0.1 - Info Disclosure
May 04, 2024
CVSS 5.3
EPSS 0.00
CVE-2023-40695 MEDIUM
IBM Cognos Controller <11.0.0 - Privilege Escalation
May 03, 2024
CVSS 6.3
EPSS 0.00
CVE-2023-40696 MEDIUM
IBM Cognos Controller - Info Disclosure
May 03, 2024
CVSS 5.9
EPSS 0.00
CVE-2023-38724 MEDIUM
IBM Cognos Controller <11.0.0 - SQL Injection
May 03, 2024
CVSS 6.3
EPSS 0.00
CVE-2023-28952 MEDIUM
IBM Cognos Controller <11.0.0 - Command Injection
May 03, 2024
CVSS 5.3
EPSS 0.00
CVE-2023-23474 LOW
IBM Cognos Controller 10.4.1, 10.4.2, 11.0.0 - Sensitive Information Exposure via Stack Trace
May 03, 2024
CVSS 3.7
EPSS 0.00
CVE-2023-37407 HIGH
IBM Aspera Orchestrator 4.0.1 - Authenticated OS Command Injection
May 03, 2024
CVSS 8.8
EPSS 0.00
Products
websphere_application_server 444 aix 393 db2 327 rational_quality_manager 202 sterling_b2b_integrator 195 infosphere_information_server 188 qradar_security_information_and_event_manager 187 maximo_asset_management 182 rational_doors_next_generation 153 rational_team_concert 142 rational_collaborative_lifecycle_management 141 rational_engineering_lifecycle_manager 141 websphere_portal 126 security_guardium 112 cognos_analytics 102 sterling_file_gateway 93 rational_rhapsody_design_manager 90 security_verify_access 90 websphere_mq 89 business_process_manager 88 lotus_domino 86 vios 85 rational_software_architect_design_manager 81 api_connect 79 lotus_notes 71 security_key_lifecycle_manager 70 db2_universal_database 66 concert 65 smartcloud_control_desk 65 urbancode_deploy 63
Quick Filters
Critical CVEs With Exploits In CISA KEV