ibm

8,286 tracked vulnerabilities.

CVE-2023-46172 MEDIUM
IBM DS8900F Firmware - Authentication Bypass
Mar 07, 2024
CVSS 5.6
EPSS 0.00
CVE-2023-46171 MEDIUM
IBM DS8900F Firmware - Authenticated Sensitive Information Exposure via Log File Enumeration
Mar 07, 2024
CVSS 4.3
EPSS 0.00
CVE-2023-46170 MEDIUM
IBM DS8900F HMC Arbitrary File Read via File Name Enumeration
Mar 07, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-46169 MEDIUM
IBM DS8900F HMC - Privilege Escalation
Mar 07, 2024
CVSS 6.5
EPSS 0.01
CVE-2023-26282 MEDIUM
IBM Watson CP4D Data Stores <4.6.4 - Privilege Escalation
Mar 05, 2024
CVSS 4.2
EPSS 0.00
CVE-2023-25681 MEDIUM
IBM Spectrum Virtualize 8.5 - Auth Bypass
Mar 05, 2024
CVSS 5.3
EPSS 0.01
CVE-2023-32331 HIGH
IBM Sterling Connect:Express for UNIX 1.5.0 - Denial of Service via Browser UI Buffer Overflow
Mar 04, 2024
CVSS 7.5
EPSS 0.01
CVE-2023-38360 MEDIUM
IBM CICS TX Advanced 10.1 - Cross-Site Scripting
Mar 04, 2024
CVSS 6.1
EPSS 0.00
CVE-2023-38362 MEDIUM
IBM CICS TX Advanced 10.1 - Info Disclosure
Mar 04, 2024
CVSS 5.3
EPSS 0.00
CVE-2023-28512 MEDIUM
IBM Watson CP4D Data Stores <4.6.3 - Info Disclosure
Mar 03, 2024
CVSS 5.9
EPSS 0.01
CVE-2023-27291 MEDIUM
IBM Watson CP4D Data Stores <4.6.3 - Info Disclosure
Mar 03, 2024
CVSS 4.5
EPSS 0.00
CVE-2023-47742 MEDIUM
IBM Cloud Pak for Security 1.10.0.0-1.10.11.0 and QRadar Suite 1.10.12.0-1.10.18.0 - Improper Certificate Validation
Mar 03, 2024
CVSS 5.9
EPSS 0.00
CVE-2023-43054 MEDIUM
IBM Engineering Test Management <7.0.3 - XSS
Mar 03, 2024
CVSS 6.4
EPSS 0.00
CVE-2023-47745 MEDIUM
IBM MQ Operator Cleartext Transmission of Sensitive Information
Mar 03, 2024
CVSS 6.2
EPSS 0.00
CVE-2023-50312 MEDIUM
IBM WebSphere Application Server Liberty 17.0.0.3-24.0.0.2 - Use of a Broken or Risky Cryptographic Algorithm
Mar 01, 2024
CVSS 5.3
EPSS 0.01
CVE-2023-47716 MEDIUM
IBM CP4BA - Filenet Content Manager 5.5.8.0, 5.5.10.0, 5.5.11.0 - Incorrect Authorization
Mar 01, 2024
CVSS 6.3
EPSS 0.00
CVE-2023-38366 MEDIUM
IBM Filenet Content Manager Component <5.5.11.0 - Path Traversal
Mar 01, 2024
CVSS 5.3
EPSS 0.01
CVE-2023-50324 MEDIUM
IBM Cognos Command Center 10.2.4.1 and 10.2.5 - Exposure of Sensitive Information via X-AspNet-Version Response Header
Mar 01, 2024
CVSS 5.3
EPSS 0.00
CVE-2023-50305 MEDIUM
IBM Engineering Requirements Management DOORS 9.7.2.7 - Info Disclo...
Mar 01, 2024
CVSS 5.1
EPSS 0.00
CVE-2023-28949 MEDIUM
IBM Engineering Requirements Management DOORS 9.7.2.7 - CSRF
Mar 01, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-28525 MEDIUM
IBM Engineering Requirements Management <9.7.2.7 - XSS
Mar 01, 2024
CVSS 4.8
EPSS 0.00
CVE-2023-38367 MEDIUM
IBM Cloud Pak for Business Automation 18.0.0-22.0.2 - Unauthenticated CRUD Operations via Invalid Token
Feb 29, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-27545 MEDIUM
IBM Cloud Pak for Data 4.6.0 - Sensitive Information Exposure via Browser Cache
Feb 29, 2024
CVSS 4.0
EPSS 0.00
CVE-2023-38372 MEDIUM
IBM Watson IoT Platform 1.0 - Privilege Escalation
Feb 29, 2024
CVSS 5.9
EPSS 0.01
CVE-2023-25926 MEDIUM
IBM Security Guardium Key Lifecycle Manager 3.0-4.1.1 - XML External Entity Injection
Feb 29, 2024
CVSS 5.5
EPSS 0.01