ibm
8,286 tracked vulnerabilities.
CVE-2023-26289
MEDIUM
IBM Aspera Orchestrator 4.0.1 - HTTP Header Injection
Jul 30, 2024
CVSS 5.4
EPSS 0.00
CVE-2023-26288
MEDIUM
IBM Aspera Orchestrator 4.0.1 - Privilege Escalation
Jul 30, 2024
CVSS 5.5
EPSS 0.00
CVE-2023-50304
HIGH
IBM Engineering Requirements Management DOORS Web Access 9.7.2.8 - XML External Entity Injection
Jul 18, 2024
CVSS 7.1
EPSS 0.01
CVE-2023-42010
LOW
IBM Sterling B2B Integrator <6.1.2.5, <6.2.0.2 - Info Disclosure
Jul 17, 2024
CVSS 3.1
EPSS 0.00
CVE-2023-35006
MEDIUM
IBM Security QRadar EDR 3.12 - HTML Injection
Jul 10, 2024
CVSS 5.4
EPSS 0.00
CVE-2023-33860
MEDIUM
IBM Security QRadar EDR 3.12 - Open Redirect
Jul 10, 2024
CVSS 5.3
EPSS 0.00
CVE-2023-33859
MEDIUM
IBM Security QRadar EDR <3.12 - Info Disclosure
Jul 10, 2024
CVSS 5.3
EPSS 0.00
CVE-2023-50964
MEDIUM
IBM InfoSphere Information Server 11.7 - Cross-Site Scripting
Jun 30, 2024
CVSS 5.4
EPSS 0.00
CVE-2023-50953
MEDIUM
IBM InfoSphere Information Server 11.7 - Sensitive Information Exposure via Detailed Error Messages
Jun 30, 2024
CVSS 5.4
EPSS 0.00
CVE-2023-50952
MEDIUM
IBM InfoSphere Information Server 11.7 - Authenticated Server-Side Request Forgery
Jun 30, 2024
CVSS 5.4
EPSS 0.00
CVE-2023-50954
MEDIUM
IBM InfoSphere Information Server 11.7 - Info Disclosure
Jun 30, 2024
CVSS 4.3
EPSS 0.00
CVE-2023-35022
LOW
IBM InfoSphere Information Server 11.7 - Improper Authorization
Jun 30, 2024
CVSS 3.3
EPSS 0.00
CVE-2023-38370
HIGH
IBM Security Access Manager Docker <10.0.8 - Privilege Escalation
Jun 27, 2024
CVSS 7.5
EPSS 0.01
CVE-2023-38368
MEDIUM
IBM Security Access Manager Docker <10.0.8 - Info Disclosure
Jun 27, 2024
CVSS 5.5
EPSS 0.00
CVE-2023-30998
HIGH
IBM Security Access Manager Docker <10.0.8 - Privilege Escalation
Jun 27, 2024
CVSS 7.8
EPSS 0.00
CVE-2023-30997
HIGH
IBM Security Access Manager Docker <10.0.8 - Privilege Escalation
Jun 27, 2024
CVSS 7.8
EPSS 0.00
CVE-2023-42014
MEDIUM
IBM Sterling B2B Integrator 6.0.0.0-6.2.0.2 - Authenticated Stored Cross-Site Scripting
Jun 27, 2024
CVSS 5.4
EPSS 0.00
CVE-2023-42011
MEDIUM
IBM Sterling B2B Integrator Standard Edition 6.1-6.2 - Info Disclosure
Jun 27, 2024
CVSS 4.3
EPSS 0.00
CVE-2023-38371
MEDIUM
IBM Security Access Manager Docker <10.0.8 - Info Disclosure
Jun 27, 2024
CVSS 5.9
EPSS 0.00
CVE-2023-30430
MEDIUM
IBM Security Verify Access 10.0.0-10.0.7.1 - Sensitive Information Exposure in Trace Logs
Jun 27, 2024
CVSS 5.5
EPSS 0.00
CVE-2023-47726
HIGH
IBM QRadar Suite Software <1.10.21.0 - Command Injection
Jun 18, 2024
CVSS 7.1
EPSS 0.00
CVE-2023-29267
MEDIUM
IBM Db2 10.5, 11.1, 11.5 - Authenticated Denial of Service via Crafted SQL Statement
Jun 12, 2024
CVSS 5.3
EPSS 0.01
CVE-2023-45188
MEDIUM
IBM Engineering Lifecycle Optimization Publishing 7.0.2 and 7.0.3 - Unrestricted Upload of File with Dangerous Type
Jun 09, 2024
CVSS 6.5
EPSS 0.01
CVE-2023-45192
HIGH
IBM Engineering Requirements Management DOORS Next 7.0.2 and 7.0.3 - XML External Entity Injection
Jun 06, 2024
CVSS 8.2
EPSS 0.01
CVE-2023-42005
HIGH
IBM Db2 and Db2 Warehouse on Cloud Pak for Data 3.5-4.8 - Unauthenticated System Call Execution
May 29, 2024
CVSS 7.4
EPSS 0.00
Products
websphere_application_server 465
aix 400
db2 339
rational_quality_manager 202
sterling_b2b_integrator 195
qradar_security_information_and_event_manager 190
infosphere_information_server 189
maximo_asset_management 182
rational_doors_next_generation 153
rational_team_concert 142
rational_collaborative_lifecycle_management 141
rational_engineering_lifecycle_manager 141
websphere_portal 126
security_guardium 112
cognos_analytics 104
sterling_file_gateway 93
vios 92
rational_rhapsody_design_manager 90
security_verify_access 90
websphere_mq 89
business_process_manager 88
lotus_domino 86
api_connect 81
rational_software_architect_design_manager 81
lotus_notes 71
security_key_lifecycle_manager 70
db2_universal_database 66
concert 65
smartcloud_control_desk 65
urbancode_deploy 65
Quick Filters