ibm
8,286 tracked vulnerabilities.
CVE-2023-50301
LOW
IBM Transformation Extender Advanced 10.0.1 - Sensitive Information Exposure in Log Files
Oct 01, 2025
CVSS 1.9
EPSS 0.00
CVE-2023-43039
MEDIUM
IBM OpenPages with Watson 9.0 - XSS
Jul 08, 2025
CVSS 6.1
EPSS 0.00
CVE-2023-38007
MEDIUM
IBM Cloud Pak System 2.3.3.6-2.3.5.0 - Cross-Site Scripting
Jun 27, 2025
CVSS 5.4
EPSS 0.00
CVE-2023-33861
MEDIUM
IBM QRadar EDR 3.12 - Trusted Entity Spoofing
May 20, 2025
CVSS 6.5
EPSS 0.00
CVE-2023-27272
LOW
IBM Aspera Console <3.4.4 - Info Disclosure
Apr 14, 2025
CVSS 3.1
EPSS 0.00
CVE-2023-43037
MEDIUM
IBM Maximo Application Suite <9.0 - Privilege Escalation
Apr 10, 2025
CVSS 6.5
EPSS 0.00
CVE-2023-43035
MEDIUM
IBM Sterling Control Center <6.4.0 - Info Disclosure
Apr 10, 2025
CVSS 4.0
EPSS 0.00
CVE-2023-42007
MEDIUM
IBM Sterling Control Center 6.2.1, 6.3.1, 6.4.0 - Cross-Site Scripting
Apr 10, 2025
CVSS 5.4
EPSS 0.00
CVE-2023-33844
MEDIUM
IBM Security Verify Governance 10.0.2 - XSS
Apr 09, 2025
CVSS 5.4
EPSS 0.00
CVE-2023-38272
MEDIUM
IBM Cloud Pak System <2.3.4.1 - Info Disclosure
Mar 27, 2025
CVSS 5.9
EPSS 0.00
CVE-2023-37405
MEDIUM
IBM Cloud Pak System 2.3.3.0-2.3.4.1 - Sensitive Data Exposure via Unencrypted Memory Storage
Mar 27, 2025
CVSS 6.5
EPSS 0.00
CVE-2023-43029
MEDIUM
IBM Storage Virtualize vSphere Remote Plug-in <1.2 - Info Disclosure
Mar 21, 2025
CVSS 6.8
EPSS 0.00
CVE-2023-43052
MEDIUM
IBM Control Center 6.2.1-6.3.1 - SSRF
Mar 07, 2025
CVSS 5.3
EPSS 0.00
CVE-2023-35894
MEDIUM
IBM Sterling Control Center 6.2.1-6.3.1 - HTTP Header Injection via HOST Header
Mar 07, 2025
CVSS 5.4
EPSS 0.00
CVE-2023-47160
HIGH
IBM Cognos Controller 11.0.0-11.0.1 FP3 and IBM Controller 11.1.0 - XML External Entity Injection
Feb 19, 2025
CVSS 8.2
EPSS 0.00
CVE-2023-38739
MEDIUM
IBM Sterling B2B Integrator 6.0.0.0-6.1.2.5 and 6.2.0.0-6.2.0.3 - Cross-Site Request Forgery
Jan 31, 2025
CVSS 4.3
EPSS 0.00
CVE-2023-37413
MEDIUM
IBM Aspera Faspex 5.0.0-5.0.10 - Username Information Disclosure via Observable Response Discrepancy
Jan 29, 2025
CVSS 5.3
EPSS 0.00
CVE-2023-37412
MEDIUM
IBM Aspera Faspex <5.0.10 - Privilege Escalation
Jan 29, 2025
CVSS 4.4
EPSS 0.00
CVE-2023-37398
MEDIUM
IBM Aspera Faspex <5.0.10 - Info Disclosure
Jan 29, 2025
CVSS 5.9
EPSS 0.00
CVE-2023-35907
MEDIUM
IBM Aspera Faspex <5.0.10 - Info Disclosure
Jan 29, 2025
CVSS 5.9
EPSS 0.00
CVE-2023-33838
MEDIUM
IBM Security Verify Governance 10.0.2 - Info Disclosure
Jan 29, 2025
CVSS 4.4
EPSS 0.00
CVE-2023-35017
MEDIUM
IBM Security Verify Governance 10.0.2 - Cleartext Transmission of Sensitive Information
Jan 29, 2025
CVSS 5.9
EPSS 0.00
CVE-2023-50316
MEDIUM
IBM Sterling B2B Integrator 6.0.0.0-6.1.2.5 and 6.2.0.0-6.2.0.1 - SQL Injection
Jan 28, 2025
CVSS 6.3
EPSS 0.00
CVE-2023-52292
MEDIUM
IBM Sterling File Gateway 6.0.0.0-6.1.2.5 and 6.2.0.0-6.2.0.3 - Stored Cross-Site Scripting
Jan 27, 2025
CVSS 6.4
EPSS 0.00
CVE-2023-47159
MEDIUM
IBM Sterling File Gateway 6.0.0.0-6.1.2.5 & 6.2.0.0-6.2.0.1 Username Enumeration via Response Discrepancy
Jan 27, 2025
CVSS 4.3
EPSS 0.00
Products
websphere_application_server 465
aix 400
db2 339
rational_quality_manager 202
sterling_b2b_integrator 195
qradar_security_information_and_event_manager 190
infosphere_information_server 189
maximo_asset_management 182
rational_doors_next_generation 153
rational_team_concert 142
rational_collaborative_lifecycle_management 141
rational_engineering_lifecycle_manager 141
websphere_portal 126
security_guardium 112
cognos_analytics 104
sterling_file_gateway 93
vios 92
rational_rhapsody_design_manager 90
security_verify_access 90
websphere_mq 89
business_process_manager 88
lotus_domino 86
api_connect 81
rational_software_architect_design_manager 81
lotus_notes 71
security_key_lifecycle_manager 70
db2_universal_database 66
concert 65
smartcloud_control_desk 65
urbancode_deploy 65
Quick Filters