ibm

8,173 tracked vulnerabilities.

CVE-2023-24958 HIGH
IBM TS7700 Management Interface <=8.53.0.63 - Authenticated RCE via Crafted URL
May 04, 2023
CVSS 8.8
EPSS 0.02
CVE-2023-23470 MEDIUM
IBM i 7.2-7.5 - Privilege Escalation
May 04, 2023
CVSS 6.4
EPSS 0.00
CVE-2023-26268 MEDIUM
Apache CouchDB < 3.2.3 - Exposure of Sensitive Information via Shared Javascript Environment in Design Documents
May 02, 2023
CVSS 4.4
EPSS 0.00
CVE-2023-30441 HIGH
IBM InfoSphere Information Server - Use of a Broken or Risky Cryptographic Algorithm
Apr 29, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-26022 MEDIUM
IBM Db2 11.1-11.1.4 - Denial of Service via DBMS_OUTPUT Module
Apr 28, 2023
CVSS 5.9
EPSS 0.00
CVE-2023-26021 HIGH
IBM Db2 11.1-11.5 - Denial of Service via LIMIT Clause
Apr 28, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-27864 MEDIUM
IBM Maximo Asset Management 7.6.1.2 and 7.6.1.3 - Cross-Site Scripting
Apr 28, 2023
CVSS 5.4
EPSS 0.00
CVE-2023-27555 MEDIUM
IBM Db2 11.5 - Denial of Service via ACR Client Affinity for Unfenced DRDA Federation Wrappers
Apr 28, 2023
CVSS 5.1
EPSS 0.00
CVE-2023-25930 MEDIUM
IBM Db2 10.1, 11.1, 11.5 - Denial of Service via Special Register Setting
Apr 28, 2023
CVSS 5.9
EPSS 0.00
CVE-2023-28528 HIGH
IBM AIX <7.4 - Privilege Escalation
Apr 28, 2023
CVSS 8.4
EPSS 0.02
CVE-2023-27557 MEDIUM
IBM Counter Fraud Management for Safer Payments 6.1.0.00-6.5.0.00 - Weak Cryptographic Algorithm
Apr 28, 2023
CVSS 5.9
EPSS 0.00
CVE-2023-27556 MEDIUM
IBM Counter Fraud Management for Safer Payments DoS
Apr 28, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-27860 MEDIUM
IBM Maximo Asset Management 7.6.1.2 and 7.6.1.3 - Sensitive Information Disclosure in Error Message
Apr 27, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-24966 MEDIUM
IBM WebSphere Application Server 8.5.0.0-8.5.5.23 - Cross-Site Scripting
Apr 27, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-30444 HIGH
IBM Watson Machine Learning on Cloud Pak for Data 4.0 and 4.5 - Authenticated Server-Side Request Forgery
Apr 27, 2023
CVSS 7.1
EPSS 0.00
CVE-2023-29255 HIGH
IBM DB2 10.5, 11.1, 11.5 - Denial of Service via Anonymous Block Compilation
Apr 27, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-27559 MEDIUM
IBM Db2 10.5, 11.1, 11.5 - Denial of Service via Crafted Subquery
Apr 26, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-29257 HIGH
IBM Db2 10.5, 11.1, 11.5 - Remote Code Execution via Database Administrator Privilege Escalation
Apr 26, 2023
CVSS 7.2
EPSS 0.00
CVE-2023-26286 HIGH
IBM AIX <7.4 - Privilege Escalation
Apr 26, 2023
CVSS 8.4
EPSS 0.00
CVE-2023-27876 HIGH
IBM TRIRIGA 4.0 - XML External Entity Injection
Apr 07, 2023
CVSS 7.1
EPSS 0.00
CVE-2023-27286 HIGH
IBM Aspera Cargo/Connect 4.2.5 - Buffer Overflow
Apr 02, 2023
CVSS 8.4
EPSS 0.01
CVE-2023-27284 HIGH
IBM Aspera Cargo/Connect <4.2.5 - Buffer Overflow
Apr 02, 2023
CVSS 8.4
EPSS 0.01
CVE-2023-26283 MEDIUM
IBM WebSphere Application Server 9.0 - Cross-Site Scripting
Apr 02, 2023
CVSS 5.4
EPSS 0.00
CVE-2023-25924 MEDIUM
IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 - Authenticated Incorrect Authorization
Mar 22, 2023
CVSS 5.4
EPSS 0.00
CVE-2023-25688 MEDIUM
IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, 4.1.1 - Path Traversal via URL Request
Mar 22, 2023
CVSS 4.3
EPSS 0.00
Products
websphere_application_server 444 aix 393 db2 327 rational_quality_manager 202 sterling_b2b_integrator 195 infosphere_information_server 188 qradar_security_information_and_event_manager 187 maximo_asset_management 182 rational_doors_next_generation 153 rational_team_concert 142 rational_collaborative_lifecycle_management 141 rational_engineering_lifecycle_manager 141 websphere_portal 126 security_guardium 112 cognos_analytics 102 sterling_file_gateway 93 rational_rhapsody_design_manager 90 security_verify_access 90 websphere_mq 89 business_process_manager 88 lotus_domino 86 vios 85 rational_software_architect_design_manager 81 api_connect 79 lotus_notes 71 security_key_lifecycle_manager 70 db2_universal_database 66 concert 65 smartcloud_control_desk 65 urbancode_deploy 63
Quick Filters
Critical CVEs With Exploits In CISA KEV