ibm
8,286 tracked vulnerabilities.
CVE-2023-46172
MEDIUM
IBM DS8900F Firmware - Authentication Bypass
Mar 07, 2024
CVSS 5.6
EPSS 0.00
CVE-2023-46171
MEDIUM
IBM DS8900F Firmware - Authenticated Sensitive Information Exposure via Log File Enumeration
Mar 07, 2024
CVSS 4.3
EPSS 0.00
CVE-2023-46170
MEDIUM
IBM DS8900F HMC Arbitrary File Read via File Name Enumeration
Mar 07, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-46169
MEDIUM
IBM DS8900F HMC - Privilege Escalation
Mar 07, 2024
CVSS 6.5
EPSS 0.01
CVE-2023-26282
MEDIUM
IBM Watson CP4D Data Stores <4.6.4 - Privilege Escalation
Mar 05, 2024
CVSS 4.2
EPSS 0.00
CVE-2023-25681
MEDIUM
IBM Spectrum Virtualize 8.5 - Auth Bypass
Mar 05, 2024
CVSS 5.3
EPSS 0.01
CVE-2023-32331
HIGH
IBM Sterling Connect:Express for UNIX 1.5.0 - Denial of Service via Browser UI Buffer Overflow
Mar 04, 2024
CVSS 7.5
EPSS 0.01
CVE-2023-38360
MEDIUM
IBM CICS TX Advanced 10.1 - Cross-Site Scripting
Mar 04, 2024
CVSS 6.1
EPSS 0.00
CVE-2023-38362
MEDIUM
IBM CICS TX Advanced 10.1 - Info Disclosure
Mar 04, 2024
CVSS 5.3
EPSS 0.00
CVE-2023-28512
MEDIUM
IBM Watson CP4D Data Stores <4.6.3 - Info Disclosure
Mar 03, 2024
CVSS 5.9
EPSS 0.01
CVE-2023-27291
MEDIUM
IBM Watson CP4D Data Stores <4.6.3 - Info Disclosure
Mar 03, 2024
CVSS 4.5
EPSS 0.00
CVE-2023-47742
MEDIUM
IBM Cloud Pak for Security 1.10.0.0-1.10.11.0 and QRadar Suite 1.10.12.0-1.10.18.0 - Improper Certificate Validation
Mar 03, 2024
CVSS 5.9
EPSS 0.00
CVE-2023-43054
MEDIUM
IBM Engineering Test Management <7.0.3 - XSS
Mar 03, 2024
CVSS 6.4
EPSS 0.00
CVE-2023-47745
MEDIUM
IBM MQ Operator Cleartext Transmission of Sensitive Information
Mar 03, 2024
CVSS 6.2
EPSS 0.00
CVE-2023-50312
MEDIUM
IBM WebSphere Application Server Liberty 17.0.0.3-24.0.0.2 - Use of a Broken or Risky Cryptographic Algorithm
Mar 01, 2024
CVSS 5.3
EPSS 0.01
CVE-2023-47716
MEDIUM
IBM CP4BA - Filenet Content Manager 5.5.8.0, 5.5.10.0, 5.5.11.0 - Incorrect Authorization
Mar 01, 2024
CVSS 6.3
EPSS 0.00
CVE-2023-38366
MEDIUM
IBM Filenet Content Manager Component <5.5.11.0 - Path Traversal
Mar 01, 2024
CVSS 5.3
EPSS 0.01
CVE-2023-50324
MEDIUM
IBM Cognos Command Center 10.2.4.1 and 10.2.5 - Exposure of Sensitive Information via X-AspNet-Version Response Header
Mar 01, 2024
CVSS 5.3
EPSS 0.00
CVE-2023-50305
MEDIUM
IBM Engineering Requirements Management DOORS 9.7.2.7 - Info Disclo...
Mar 01, 2024
CVSS 5.1
EPSS 0.00
CVE-2023-28949
MEDIUM
IBM Engineering Requirements Management DOORS 9.7.2.7 - CSRF
Mar 01, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-28525
MEDIUM
IBM Engineering Requirements Management <9.7.2.7 - XSS
Mar 01, 2024
CVSS 4.8
EPSS 0.00
CVE-2023-38367
MEDIUM
IBM Cloud Pak for Business Automation 18.0.0-22.0.2 - Unauthenticated CRUD Operations via Invalid Token
Feb 29, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-27545
MEDIUM
IBM Cloud Pak for Data 4.6.0 - Sensitive Information Exposure via Browser Cache
Feb 29, 2024
CVSS 4.0
EPSS 0.00
CVE-2023-38372
MEDIUM
IBM Watson IoT Platform 1.0 - Privilege Escalation
Feb 29, 2024
CVSS 5.9
EPSS 0.01
CVE-2023-25926
MEDIUM
IBM Security Guardium Key Lifecycle Manager 3.0-4.1.1 - XML External Entity Injection
Feb 29, 2024
CVSS 5.5
EPSS 0.01
Products
websphere_application_server 465
aix 400
db2 339
rational_quality_manager 202
sterling_b2b_integrator 195
qradar_security_information_and_event_manager 190
infosphere_information_server 189
maximo_asset_management 182
rational_doors_next_generation 153
rational_team_concert 142
rational_collaborative_lifecycle_management 141
rational_engineering_lifecycle_manager 141
websphere_portal 126
security_guardium 112
cognos_analytics 104
sterling_file_gateway 93
vios 92
rational_rhapsody_design_manager 90
security_verify_access 90
websphere_mq 89
business_process_manager 88
lotus_domino 86
api_connect 81
rational_software_architect_design_manager 81
lotus_notes 71
security_key_lifecycle_manager 70
db2_universal_database 66
concert 65
smartcloud_control_desk 65
urbancode_deploy 65
Quick Filters