ibm

8,286 tracked vulnerabilities.

CVE-2023-22878 MEDIUM
IBM InfoSphere Information Server 11.7 - Cleartext Storage of Sensitive Information
May 19, 2023
CVSS 6.2
EPSS 0.00
CVE-2023-28514 MEDIUM
IBM MQ 8.0, 9.0, and 9.1 - Sensitive Credential Exposure via Error Message
May 19, 2023
CVSS 6.2
EPSS 0.00
CVE-2023-30438 CRITICAL
IBM PowerVM Hypervisor fw950-fw950.71 - Authenticated Logical Partition Isolation Bypass
May 17, 2023
CVSS 9.3
EPSS 0.00
CVE-2023-27863 MEDIUM
IBM Spectrum Protect Plus Server 10.1.13 - Exposure of Sensitive Information via SMB Credentials
May 12, 2023
CVSS 4.4
EPSS 0.01
CVE-2023-25927 MEDIUM
IBM Security Verify Access 10.0.0-10.0.5 - Denial of Service via Crafted HTTP Requests
May 12, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-28522 MEDIUM
IBM API Connect V10 - Privilege Escalation
May 12, 2023
CVSS 4.3
EPSS 0.01
CVE-2023-28520 MEDIUM
IBM Planning Analytics Local 2.0 - XSS
May 12, 2023
CVSS 6.4
EPSS 0.00
CVE-2023-27870 MEDIUM
IBM Spectrum Virtualize 8.5 - Sensitive Credential Exposure During Fix Central Download
May 11, 2023
CVSS 5.9
EPSS 0.01
CVE-2023-27554 MEDIUM
IBM WebSphere Application Server 8.5.0.0-8.5.5.23 - XML External Entity Injection
May 11, 2023
CVSS 6.3
EPSS 0.01
CVE-2023-24957 MEDIUM
IBM Business Automation Workflow Stored XSS (18.0.0.0-19.0.0.3, 20.0.0.1-20.0.0.2, 21.0.2-21.0.3, 22.0.1-22.0.2)
May 06, 2023
CVSS 5.4
EPSS 0.00
CVE-2023-26285 MEDIUM
IBM MQ Appliance 9.2.0.0-9.2.0.10 and 9.2.0.0-9.2.5.6 - Denial of Service via Invalid Data Processing
May 05, 2023
CVSS 5.9
EPSS 0.01
CVE-2023-30434 MEDIUM
IBM Storage Scale and Elastic Storage System - Denial of Service via Kernel Panic
May 05, 2023
CVSS 6.2
EPSS 0.00
CVE-2023-22874 MEDIUM
IBM MQ Appliance 9.2.0.0-9.3.1 and 9.3.0.0-9.3.0.4 - Denial of Service via Configuration File Processing
May 05, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-24958 HIGH
IBM TS7700 Management Interface <=8.53.0.63 - Authenticated RCE via Crafted URL
May 04, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-23470 MEDIUM
IBM i 7.2-7.5 - Privilege Escalation
May 04, 2023
CVSS 6.4
EPSS 0.01
CVE-2023-26268 MEDIUM
Apache CouchDB < 3.2.3 - Exposure of Sensitive Information via Shared Javascript Environment in Design Documents
May 02, 2023
CVSS 4.4
EPSS 0.01
CVE-2023-30441 HIGH
IBM InfoSphere Information Server - Use of a Broken or Risky Cryptographic Algorithm
Apr 29, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-26022 MEDIUM
IBM Db2 11.1-11.1.4 - Denial of Service via DBMS_OUTPUT Module
Apr 28, 2023
CVSS 5.9
EPSS 0.01
CVE-2023-26021 HIGH
IBM Db2 11.1-11.5 - Denial of Service via LIMIT Clause
Apr 28, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-27864 MEDIUM
IBM Maximo Asset Management 7.6.1.2 and 7.6.1.3 - Cross-Site Scripting
Apr 28, 2023
CVSS 5.4
EPSS 0.00
CVE-2023-27555 MEDIUM
IBM Db2 11.5 - Denial of Service via ACR Client Affinity for Unfenced DRDA Federation Wrappers
Apr 28, 2023
CVSS 5.1
EPSS 0.01
CVE-2023-25930 MEDIUM
IBM Db2 10.1, 11.1, 11.5 - Denial of Service via Special Register Setting
Apr 28, 2023
CVSS 5.9
EPSS 0.01
CVE-2023-28528 HIGH
IBM AIX <7.4 - Privilege Escalation
Apr 28, 2023
CVSS 8.4
EPSS 0.01
CVE-2023-27557 MEDIUM
IBM Counter Fraud Management for Safer Payments 6.1.0.00-6.5.0.00 - Weak Cryptographic Algorithm
Apr 28, 2023
CVSS 5.9
EPSS 0.00
CVE-2023-27556 MEDIUM
IBM Counter Fraud Management for Safer Payments DoS
Apr 28, 2023
CVSS 6.5
EPSS 0.01