ibm

8,286 tracked vulnerabilities.

CVE-2023-25921 HIGH
IBM Security Guardium Key Lifecycle Manager 3.0-4.1.1 - Unrestricted Upload of File with Dangerous Type
Feb 29, 2024
CVSS 8.5
EPSS 0.01
CVE-2023-25925 HIGH
IBM Security Guardium Key Lifecycle Manager 3.0-4.1.1 - Authenticated Remote Code Execution
Feb 28, 2024
CVSS 8.5
EPSS 0.01
CVE-2023-25922 MEDIUM
IBM Security Guardium Key Lifecycle Manager 3.0-4.1.1 - Unrestricted Upload of File with Dangerous Type
Feb 28, 2024
CVSS 4.3
EPSS 0.01
CVE-2023-50303 MEDIUM
IBM InfoSphere Information Server 11.7 - Stored Cross-Site Scripting
Feb 28, 2024
CVSS 6.1
EPSS 0.00
CVE-2023-43051 MEDIUM
IBM Cognos Analytics <12.0.0 - XSS
Feb 26, 2024
CVSS 5.4
EPSS 0.01
CVE-2023-38359 MEDIUM
IBM Cognos Analytics <12.0.0 - XSS
Feb 26, 2024
CVSS 6.1
EPSS 0.01
CVE-2023-32344 MEDIUM
Netapp Oncommand Insight < 11.1.7 - CSRF
Feb 26, 2024
CVSS 4.3
EPSS 0.00
CVE-2023-30996 MEDIUM
IBM Cognos Analytics <12.0.0 - Info Disclosure
Feb 26, 2024
CVSS 5.3
EPSS 0.00
CVE-2023-50955 LOW
IBM InfoSphere Information Server 11.7 - Authenticated Path Traversal
Feb 21, 2024
CVSS 2.4
EPSS 0.01
CVE-2023-33843 MEDIUM
IBM InfoSphere Information Server 11.7 - XSS
Feb 21, 2024
CVSS 5.4
EPSS 0.00
CVE-2023-50306 MEDIUM
IBM Common Licensing 9.0 - Username Enumeration via Observable Response Discrepancy
Feb 20, 2024
CVSS 4.0
EPSS 0.00
CVE-2023-50951 MEDIUM
IBM Cloud Pak for Security 1.10.0.0-1.10.11.0 & QRadar Suite 1.10.12.0-1.10.17.0 - Sensitive Info Disclosure in Logs
Feb 17, 2024
CVSS 4.0
EPSS 0.00
CVE-2023-46186 MEDIUM
IBM Jazz for Service Management <1.1.3.20 - Info Disclosure
Feb 14, 2024
CVSS 5.3
EPSS 0.01
CVE-2023-50957 HIGH
IBM Storage Defender - Resiliency Service 2.0 - Cleartext Storage of Sensitive Information
Feb 10, 2024
CVSS 8.0
EPSS 0.00
CVE-2023-45191 HIGH
IBM Engineering Lifecycle Optimization 7.0.2 and 7.0.3 - Inadequate Account Lockout Setting
Feb 09, 2024
CVSS 7.5
EPSS 0.01
CVE-2023-45190 MEDIUM
IBM Engineering Lifecycle Optimization 7.0.2-7.0.3 - HTTP Header Injection via HOST Header
Feb 09, 2024
CVSS 5.1
EPSS 0.00
CVE-2023-45187 MEDIUM
IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 - Insufficient Session Expiration
Feb 09, 2024
CVSS 6.3
EPSS 0.00
CVE-2023-42016 MEDIUM
IBM Sterling B2B Integrator 6.0.0.0-6.0.3.8 & 6.1.0.0-6.1.2.3 Cleartext Session Cookie Transmission
Feb 09, 2024
CVSS 4.3
EPSS 0.00
CVE-2023-32341 MEDIUM
IBM Sterling B2B Integrator 6.0.0.0-6.0.3.8 & 6.1.0.0-6.1.2.3 DoS via Resource Consumption
Feb 09, 2024
CVSS 6.5
EPSS 0.01
CVE-2023-47700 MEDIUM
IBM Storage Virtualize 8.6 - Improper Certificate Validation
Feb 07, 2024
CVSS 5.9
EPSS 0.01
CVE-2023-43017 HIGH
IBM Security Verify Access <10.0.6.1 - Privilege Escalation
Feb 07, 2024
CVSS 8.2
EPSS 0.01
CVE-2023-38369 MEDIUM
IBM Security Access Manager Container <10.0.6.1 - Info Disclosure
Feb 07, 2024
CVSS 6.2
EPSS 0.01
CVE-2023-32330 HIGH
IBM Security Verify Access 10.0.0.0-10.0.6.1 - Improper Certificate Validation
Feb 07, 2024
CVSS 7.5
EPSS 0.01
CVE-2023-32328 HIGH
IBM Security Verify Access 10.0.0.0-10.0.6.1 - Cleartext Transmission of Sensitive Information
Feb 07, 2024
CVSS 7.5
EPSS 0.01
CVE-2023-31002 MEDIUM
IBM Security Access Manager Container <10.0.6.1 - Info Disclosure
Feb 07, 2024
CVSS 5.1
EPSS 0.00