ibm
8,286 tracked vulnerabilities.
CVE-2023-46183
MEDIUM
IBM PowerVM Hypervisor - Info Disclosure
Feb 06, 2024
CVSS 5.3
EPSS 0.00
CVE-2023-50947
MEDIUM
IBM Business Automation Workflow 22.0.2, 23.0.1, 23.0.2 - Stored Cross-Site Scripting
Feb 04, 2024
CVSS 5.4
EPSS 0.00
CVE-2023-33851
MEDIUM
IBM PowerVM Hypervisor - Info Disclosure
Feb 04, 2024
CVSS 5.3
EPSS 0.00
CVE-2023-43016
HIGH
IBM Security Verify Access - Auth Bypass
Feb 03, 2024
CVSS 7.3
EPSS 0.01
CVE-2023-32329
MEDIUM
IBM Security Verify Access 10.0.0.0-10.0.6.1 - Improper File Validation
Feb 03, 2024
CVSS 6.2
EPSS 0.00
CVE-2023-32327
HIGH
IBM Security Verify Access 10.0.0.0-10.0.6.1 - XML External Entity Injection
Feb 03, 2024
CVSS 7.1
EPSS 0.01
CVE-2023-31006
MEDIUM
IBM Security Verify Access 10.0.0.0-10.0.6.1 - Denial of Service via DSC Server
Feb 03, 2024
CVSS 6.5
EPSS 0.01
CVE-2023-31005
MEDIUM
IBM Security Verify Access - Privilege Escalation
Feb 03, 2024
CVSS 6.2
EPSS 0.00
CVE-2023-31004
HIGH
IBM Security Verify Access - Privilege Escalation
Feb 03, 2024
CVSS 8.3
EPSS 0.01
CVE-2023-30999
HIGH
IBM Security Verify Access 10.0.0.0-10.0.6.1 - Denial of Service via Uncontrolled Resource Consumption
Feb 03, 2024
CVSS 7.5
EPSS 0.01
CVE-2023-38273
HIGH
IBM Cloud Pak System <2.3.3.7 - Info Disclosure
Feb 02, 2024
CVSS 7.5
EPSS 0.01
CVE-2023-47142
HIGH
IBM Tivoli Application Dependency Discovery Manager 7.3.0.0-7.3.0.10 - Privilege Escalation via Unauthorized API Access
Feb 02, 2024
CVSS 7.5
EPSS 0.00
CVE-2023-47148
MEDIUM
IBM Spectrum Protect Plus 10.1.0-10.1.15.2 - Sensitive Information Exposure via Unsecured Endpoints
Feb 02, 2024
CVSS 5.3
EPSS 0.01
CVE-2023-47144
MEDIUM
IBM Tivoli Application Dependency Discovery Manager 7.3.0.0-7.3.0.10 - Cross-Site Scripting
Feb 02, 2024
CVSS 6.1
EPSS 0.00
CVE-2023-47143
CRITICAL
IBM Tivoli Application Dependency Discovery Manager 7.3.0.0-7.3.0.10 - HTTP Header Injection via HOST Header
Feb 02, 2024
CVSS 10.0
EPSS 0.01
CVE-2023-38263
MEDIUM
IBM SOAR QRadar Plugin App <5.0.3 - Privilege Escalation
Feb 02, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-38020
MEDIUM
IBM SOAR QRadar Plugin App <5.0.3 - Info Disclosure
Feb 02, 2024
CVSS 4.3
EPSS 0.00
CVE-2023-38019
HIGH
IBM SOAR QRadar Plugin App 1.0-5.0.3 - Path Traversal via URL Request
Feb 02, 2024
CVSS 8.1
EPSS 0.01
CVE-2023-46159
LOW
IBM Storage Ceph 5.3z1, 5.3z5, and 6.1z1 - Authenticated Denial of Service
Feb 02, 2024
CVSS 2.6
EPSS 0.01
CVE-2023-50962
MEDIUM
IBM PowerSC 1.3, 2.0, and 2.1 - Cleartext Transmission of Sensitive Information
Feb 02, 2024
CVSS 5.9
EPSS 0.00
CVE-2023-50941
MEDIUM
IBM PowerSC <2.2 - Privilege Escalation
Feb 02, 2024
CVSS 6.3
EPSS 0.00
CVE-2023-50938
MEDIUM
IBM PowerSC 1.3, 2.0, and 2.1 - Clickjacking
Feb 02, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-50935
MEDIUM
IBM PowerSC 1.3, 2.0, and 2.1 - Unauthenticated Direct Request Access
Feb 02, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-50934
MEDIUM
IBM PowerSC 1.3, 2.0, and 2.1 - Improper Authentication
Feb 02, 2024
CVSS 5.3
EPSS 0.00
CVE-2023-50328
LOW
IBM PowerSC 1.3, 2.0, 2.1 - Session Identifier Exposure via URL Query String
Feb 02, 2024
CVSS 3.7
EPSS 0.01
Products
websphere_application_server 465
aix 400
db2 339
rational_quality_manager 202
sterling_b2b_integrator 195
qradar_security_information_and_event_manager 190
infosphere_information_server 189
maximo_asset_management 182
rational_doors_next_generation 153
rational_team_concert 142
rational_collaborative_lifecycle_management 141
rational_engineering_lifecycle_manager 141
websphere_portal 126
security_guardium 112
cognos_analytics 104
sterling_file_gateway 93
vios 92
rational_rhapsody_design_manager 90
security_verify_access 90
websphere_mq 89
business_process_manager 88
lotus_domino 86
api_connect 81
rational_software_architect_design_manager 81
lotus_notes 71
security_key_lifecycle_manager 70
db2_universal_database 66
concert 65
smartcloud_control_desk 65
urbancode_deploy 65
Quick Filters