ibm

8,153 tracked vulnerabilities.

CVE-2025-13702 MEDIUM
IBM Sterling Partner Engagement Manager 6.2.3.0-6.2.3.5/6.2.4.0-6.2.4.2 - XSS
Mar 13, 2026
CVSS 6.1
EPSS 0.00
CVE-2025-13213 MEDIUM
IBM Aspera Orchestrator 3.0.0-4.1.2 - HTTP Header Injection
Mar 10, 2026
CVSS 5.4
EPSS 0.00
CVE-2025-36227 MEDIUM
IBM Aspera Faspex 5.0.0-5.0.14.3 - HTTP Header Injection
Mar 10, 2026
CVSS 5.4
EPSS 0.00
CVE-2025-36226 MEDIUM
IBM Aspera Faspex 5.0.0-5.0.14.3 - XSS
Mar 10, 2026
CVSS 5.4
EPSS 0.00
CVE-2025-13219 MEDIUM
IBM Aspera Orchestrator 3.0.0-4.1.2 - Info Disclosure
Mar 10, 2026
CVSS 5.9
EPSS 0.00
CVE-2025-36173 MEDIUM
InfoSphere Data Architect 9.2.1 - Info Disclosure
Mar 10, 2026
CVSS 6.1
EPSS 0.00
CVE-2025-36105 MEDIUM
IBM Planning Analytics Advanced 3.1.0-3.1.4 - Info Disclosure
Mar 10, 2026
CVSS 4.4
EPSS 0.00
CVE-2025-14480 MEDIUM
IBM Aspera faspio Gateway 1.3.6 - Info Disclosure
Mar 03, 2026
CVSS 5.1
EPSS 0.00
CVE-2025-14456 MEDIUM
IBM MQ Appliance 9.4 CD 9.4.4.0-9.4.4.1 - Vuln Type
Mar 03, 2026
CVSS 5.9
EPSS 0.00
CVE-2025-13688 MEDIUM
IBM DataStage 5.1.2-5.3.0 - Command Injection
Mar 03, 2026
CVSS 6.3
EPSS 0.00
CVE-2025-13687 MEDIUM
IBM DataStage 5.1.2-5.3.0 - Command Injection
Mar 03, 2026
CVSS 6.3
EPSS 0.00
CVE-2025-13686 MEDIUM
IBM DataStage 5.1.2-5.3.0 - Command Injection
Mar 03, 2026
CVSS 6.3
EPSS 0.00
CVE-2025-36364 MEDIUM
IBM DevOps Plan 3.0.0-3.0.5 - Info Disclosure
Mar 03, 2026
CVSS 6.2
EPSS 0.00
CVE-2025-36363 MEDIUM
IBM DevOps Plan 3.0.0-3.0.5 - Auth Bypass
Mar 03, 2026
CVSS 5.9
EPSS 0.00
CVE-2025-14923 MEDIUM
IBM WebSphere Liberty 17.0.0.3-26.0.0.2 - Auth Bypass
Mar 03, 2026
CVSS 4.7
EPSS 0.00
CVE-2025-14604 MEDIUM
IBM Storage Scale 5.2.3.0-5.2.3.5/6.0.0.0-6.0.0.1 - Privilege Escal...
Mar 03, 2026
CVSS 6.6
EPSS 0.00
CVE-2025-13734 MEDIUM
IBM DOORS Next 7.1-7.2 - Privilege Escalation
Mar 03, 2026
CVSS 5.4
EPSS 0.00
CVE-2025-13616 MEDIUM
IBM DataStage on Cloud Pak 5.1.2-5.3.0 - Info Disclosure
Mar 03, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-13490 MEDIUM
IBM App Connect Operator - Info Disclosure
Mar 03, 2026
CVSS 5.9
EPSS 0.00
CVE-2025-13689 HIGH
IBM DataStage on Cloud Pak - Command Injection
Feb 17, 2026
CVSS 8.8
EPSS 0.00
CVE-2025-13333 MEDIUM
IBM WebSphere 9.0/8.5 - Auth Bypass
Feb 17, 2026
CVSS 4.4
EPSS 0.00
CVE-2025-36348 MEDIUM
IBM Sterling B2B Integrator - Info Disclosure
Feb 17, 2026
CVSS 4.9
EPSS 0.00
CVE-2025-36183 LOW
IBM watsonx.data 2.2-2.2.1 - Code Injection
Feb 17, 2026
CVSS 3.8
EPSS 0.00
CVE-2025-33135 MEDIUM
IBM Financial Transaction Manager 3.0.0.0-3.0.5.4 - XSS
Feb 17, 2026
CVSS 6.1
EPSS 0.00
CVE-2025-33088 HIGH
IBM Concert 1.0.0-2.1.0 - Privilege Escalation
Feb 17, 2026
CVSS 7.4
EPSS 0.00
Products
websphere_application_server 444 aix 393 db2 327 rational_quality_manager 202 sterling_b2b_integrator 195 infosphere_information_server 188 qradar_security_information_and_event_manager 187 maximo_asset_management 182 rational_doors_next_generation 153 rational_team_concert 142 rational_collaborative_lifecycle_management 141 rational_engineering_lifecycle_manager 141 websphere_portal 126 security_guardium 112 cognos_analytics 102 sterling_file_gateway 93 rational_rhapsody_design_manager 90 security_verify_access 90 websphere_mq 89 business_process_manager 88 lotus_domino 86 vios 85 rational_software_architect_design_manager 81 api_connect 79 lotus_notes 71 security_key_lifecycle_manager 70 db2_universal_database 66 concert 65 smartcloud_control_desk 65 urbancode_deploy 63
Quick Filters
Critical CVEs With Exploits In CISA KEV