ibm

8,286 tracked vulnerabilities.

CVE-2023-46183 MEDIUM
IBM PowerVM Hypervisor - Info Disclosure
Feb 06, 2024
CVSS 5.3
EPSS 0.00
CVE-2023-50947 MEDIUM
IBM Business Automation Workflow 22.0.2, 23.0.1, 23.0.2 - Stored Cross-Site Scripting
Feb 04, 2024
CVSS 5.4
EPSS 0.00
CVE-2023-33851 MEDIUM
IBM PowerVM Hypervisor - Info Disclosure
Feb 04, 2024
CVSS 5.3
EPSS 0.00
CVE-2023-43016 HIGH
IBM Security Verify Access - Auth Bypass
Feb 03, 2024
CVSS 7.3
EPSS 0.01
CVE-2023-32329 MEDIUM
IBM Security Verify Access 10.0.0.0-10.0.6.1 - Improper File Validation
Feb 03, 2024
CVSS 6.2
EPSS 0.00
CVE-2023-32327 HIGH
IBM Security Verify Access 10.0.0.0-10.0.6.1 - XML External Entity Injection
Feb 03, 2024
CVSS 7.1
EPSS 0.01
CVE-2023-31006 MEDIUM
IBM Security Verify Access 10.0.0.0-10.0.6.1 - Denial of Service via DSC Server
Feb 03, 2024
CVSS 6.5
EPSS 0.01
CVE-2023-31005 MEDIUM
IBM Security Verify Access - Privilege Escalation
Feb 03, 2024
CVSS 6.2
EPSS 0.00
CVE-2023-31004 HIGH
IBM Security Verify Access - Privilege Escalation
Feb 03, 2024
CVSS 8.3
EPSS 0.01
CVE-2023-30999 HIGH
IBM Security Verify Access 10.0.0.0-10.0.6.1 - Denial of Service via Uncontrolled Resource Consumption
Feb 03, 2024
CVSS 7.5
EPSS 0.01
CVE-2023-38273 HIGH
IBM Cloud Pak System <2.3.3.7 - Info Disclosure
Feb 02, 2024
CVSS 7.5
EPSS 0.01
CVE-2023-47142 HIGH
IBM Tivoli Application Dependency Discovery Manager 7.3.0.0-7.3.0.10 - Privilege Escalation via Unauthorized API Access
Feb 02, 2024
CVSS 7.5
EPSS 0.00
CVE-2023-47148 MEDIUM
IBM Spectrum Protect Plus 10.1.0-10.1.15.2 - Sensitive Information Exposure via Unsecured Endpoints
Feb 02, 2024
CVSS 5.3
EPSS 0.01
CVE-2023-47144 MEDIUM
IBM Tivoli Application Dependency Discovery Manager 7.3.0.0-7.3.0.10 - Cross-Site Scripting
Feb 02, 2024
CVSS 6.1
EPSS 0.00
CVE-2023-47143 CRITICAL
IBM Tivoli Application Dependency Discovery Manager 7.3.0.0-7.3.0.10 - HTTP Header Injection via HOST Header
Feb 02, 2024
CVSS 10.0
EPSS 0.01
CVE-2023-38263 MEDIUM
IBM SOAR QRadar Plugin App <5.0.3 - Privilege Escalation
Feb 02, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-38020 MEDIUM
IBM SOAR QRadar Plugin App <5.0.3 - Info Disclosure
Feb 02, 2024
CVSS 4.3
EPSS 0.00
CVE-2023-38019 HIGH
IBM SOAR QRadar Plugin App 1.0-5.0.3 - Path Traversal via URL Request
Feb 02, 2024
CVSS 8.1
EPSS 0.01
CVE-2023-46159 LOW
IBM Storage Ceph 5.3z1, 5.3z5, and 6.1z1 - Authenticated Denial of Service
Feb 02, 2024
CVSS 2.6
EPSS 0.01
CVE-2023-50962 MEDIUM
IBM PowerSC 1.3, 2.0, and 2.1 - Cleartext Transmission of Sensitive Information
Feb 02, 2024
CVSS 5.9
EPSS 0.00
CVE-2023-50941 MEDIUM
IBM PowerSC <2.2 - Privilege Escalation
Feb 02, 2024
CVSS 6.3
EPSS 0.00
CVE-2023-50938 MEDIUM
IBM PowerSC 1.3, 2.0, and 2.1 - Clickjacking
Feb 02, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-50935 MEDIUM
IBM PowerSC 1.3, 2.0, and 2.1 - Unauthenticated Direct Request Access
Feb 02, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-50934 MEDIUM
IBM PowerSC 1.3, 2.0, and 2.1 - Improper Authentication
Feb 02, 2024
CVSS 5.3
EPSS 0.00
CVE-2023-50328 LOW
IBM PowerSC 1.3, 2.0, 2.1 - Session Identifier Exposure via URL Query String
Feb 02, 2024
CVSS 3.7
EPSS 0.01