ibm

8,286 tracked vulnerabilities.

CVE-2023-50307 MEDIUM
IBM Sterling B2B Integrator 6.0.0.0-6.0.3.9, 6.1.0.0-6.1.2.3, 6.2.0.0 - Cross-Site Scripting
Apr 12, 2024
CVSS 5.4
EPSS 0.00
CVE-2023-45186 MEDIUM
IBM Sterling B2B Integrator 6.0.0.0-6.0.3.9, 6.1.0.0-6.1.2.3, 6.2.0.0 - Cross-Site Scripting
Apr 12, 2024
CVSS 4.8
EPSS 0.00
CVE-2023-50949 MEDIUM
IBM QRadar SIEM 7.5 - Improper Certificate Validation
Apr 11, 2024
CVSS 5.9
EPSS 0.00
CVE-2023-52296 MEDIUM
IBM DB2 11.5 - Denial of Service via Concurrent UDF Query
Apr 03, 2024
CVSS 5.3
EPSS 0.01
CVE-2023-38729 MEDIUM
IBM Db2 10.5, 11.1, 11.5 - Sensitive Information Disclosure via ADMIN_CMD with IMPORT or EXPORT
Apr 03, 2024
CVSS 6.8
EPSS 0.01
CVE-2023-50313 MEDIUM
IBM WebSphere Application Server 8.5 and 9.0 - Use of a Broken or Risky Cryptographic Algorithm
Apr 02, 2024
CVSS 5.3
EPSS 0.00
CVE-2023-50959 MEDIUM
IBM Cloud Pak for Business Automation <23.0.2 - Info Disclosure
Mar 31, 2024
CVSS 5.3
EPSS 0.01
CVE-2023-50311 LOW
IBM CICS Transaction Gateway 9.2-9.3 - Sensitive Path Information Disclosure via Debugging or Error Messages
Mar 31, 2024
CVSS 3.1
EPSS 0.00
CVE-2023-50961 MEDIUM
IBM QRadar SIEM 7.5 - Stored Cross-Site Scripting
Mar 27, 2024
CVSS 4.8
EPSS 0.00
CVE-2023-47150 HIGH
IBM Common Cryptographic Architecture 7.0.0-7.5.36 - Denial of Service via AES Operations
Mar 26, 2024
CVSS 7.5
EPSS 0.01
CVE-2023-33855 LOW
IBM Common Cryptographic Architecture 7.0.0-7.5.36 - Covert Timing Channel via RSA Operations
Mar 26, 2024
CVSS 3.7
EPSS 0.00
CVE-2023-47715 MEDIUM
IBM Storage Protect Plus 10.1.0-10.1.16 - Authenticated Privilege Escalation via HyperVisor Configuration Manipulation
Mar 21, 2024
CVSS 4.3
EPSS 0.00
CVE-2023-35899 HIGH
IBM Cloud Pak for Automation <22.0.2 - Code Injection
Mar 21, 2024
CVSS 7.0
EPSS 0.01
CVE-2023-45177 MEDIUM
IBM MQ 9.0.0.0-9.0.0.20 and 9.3.0-9.3.3 - Denial of Service in Clustering Logic
Mar 20, 2024
CVSS 5.3
EPSS 0.01
CVE-2023-35888 MEDIUM
IBM Security Verify Governance 10.0.2 - Sensitive Information Exposure via Missing HSTS Enforcement
Mar 20, 2024
CVSS 5.9
EPSS 0.00
CVE-2023-47699 MEDIUM
IBM Sterling Secure Proxy 6.0.3 and 6.1.0 - Cross-Site Scripting
Mar 15, 2024
CVSS 6.1
EPSS 0.00
CVE-2023-47147 MEDIUM
IBM Sterling Secure Proxy <6.1.0 - Info Disclosure
Mar 15, 2024
CVSS 5.9
EPSS 0.00
CVE-2023-46181 MEDIUM
IBM Sterling Secure Proxy <6.1.0 - Info Disclosure
Mar 15, 2024
CVSS 4.0
EPSS 0.00
CVE-2023-47162 MEDIUM
IBM Sterling Secure Proxy 6.0.3 and 6.1.0 - Cross-Site Scripting
Mar 15, 2024
CVSS 6.1
EPSS 0.00
CVE-2023-46182 MEDIUM
IBM Sterling Secure Proxy <6.1.0 - XSS
Mar 15, 2024
CVSS 5.4
EPSS 0.00
CVE-2023-46179 MEDIUM
IBM Sterling Secure Proxy <6.1.0 - Open Redirect
Mar 15, 2024
CVSS 4.3
EPSS 0.00
CVE-2023-43043 MEDIUM
IBM Maximo Application Suite - Info Disclosure
Mar 13, 2024
CVSS 5.1
EPSS 0.00
CVE-2023-38723 MEDIUM
IBM Maximo Application Suite 7.6.1.3 - XSS
Mar 13, 2024
CVSS 6.4
EPSS 0.00
CVE-2023-32335 LOW
IBM Maximo Suite 8.10-8.11 & Asset Mgmt 7.6.1.3 - Sensitive Info Exposure via URL
Mar 13, 2024
CVSS 3.7
EPSS 0.01
CVE-2023-28517 MEDIUM
IBM Sterling Partner Engagement Manager <6.2.2 - XSS
Mar 13, 2024
CVSS 5.4
EPSS 0.00