ibm

8,202 tracked vulnerabilities.

CVE-2022-40232 MEDIUM
IBM Sterling B2B Integrator 6.1.0.0-6.1.1.1 and 6.1.2.0 - Authenticated Incorrect Default Permissions
Feb 17, 2023
CVSS 6.3
EPSS 0.00
CVE-2022-43929 MEDIUM
IBM Db2 11.1 and 11.5 - Denial of Service via Load Command
Feb 17, 2023
CVSS 4.9
EPSS 0.00
CVE-2022-43927 MEDIUM
IBM Db2 10.5, 11.1, 11.5 - Information Disclosure via Specially Crafted Table Access
Feb 17, 2023
CVSS 5.9
EPSS 0.00
CVE-2022-36775 MEDIUM
IBM Security Verify Access 10.0.0.0-10.0.4.0 - HTTP Header Injection via HOST Header
Feb 17, 2023
CVSS 6.5
EPSS 0.00
CVE-2022-47986 CRITICAL KEVNUCLEI
IBM Aspera Faspex < 4.4.2 PL2 - Remote Code Execution via YAML Deserialization
Feb 17, 2023
CVSS 9.8
EPSS 0.94
CVE-2022-43869 MEDIUM
IBM Spectrum Scale & Elastic Storage System <5.1.2.8, <6.1.4.1 - DoS
Feb 12, 2023
CVSS 6.5
EPSS 0.01
CVE-2022-42444 MEDIUM
IBM App Connect Enterprise 11.0.0.8-11.0.0.19 and 12.0.1.0-12.0.5.0 - Stack-based Buffer Overflow
Feb 12, 2023
CVSS 4.9
EPSS 0.00
CVE-2022-42436 MEDIUM
IBM MQ 8.0.0, 9.0.0, 9.1.0, 9.2.0, 9.3.0 - Information Disclosure via Diagnostic Files
Feb 12, 2023
CVSS 4.0
EPSS 0.00
CVE-2022-41731 HIGH
IBM Watson Knowledge Catalog on Cloud Pak for Data <4.5.0 - SQL Inj...
Feb 12, 2023
CVSS 8.6
EPSS 0.00
CVE-2022-34350 MEDIUM
IBM API Connect 10.0.0.0-10.0.5.0 - Server-Side Request Forgery via Improper Input Validation
Feb 08, 2023
CVSS 5.3
EPSS 0.00
CVE-2022-42438 HIGH
IBM Cloud Pak for Multicloud Management Monitoring <2.4 - Info Disc...
Feb 08, 2023
CVSS 7.5
EPSS 0.00
CVE-2022-35720 LOW
IBM Sterling <6.1.0, <6.0.3 - Info Disclosure
Feb 08, 2023
CVSS 2.3
EPSS 0.00
CVE-2022-34362 MEDIUM
IBM Sterling Secure Proxy 6.0.3 - HTTP Header Injection via HOST Header
Feb 08, 2023
CVSS 4.6
EPSS 0.00
CVE-2022-42439 MEDIUM
IBM App Connect Enterprise Sensitive Information Exposure in Discovery Connector Nodes
Feb 06, 2023
CVSS 6.8
EPSS 0.00
CVE-2022-38389 HIGH
IBM Tivoli Workload Scheduler <10.1 - XXE
Feb 03, 2023
CVSS 7.1
EPSS 0.00
CVE-2022-22486 CRITICAL
IBM Tivoli Workload Scheduler <10.1 - XXE
Feb 03, 2023
CVSS 10.0
EPSS 0.00
CVE-2022-47983 MEDIUM
IBM InfoSphere Information Server 11.7 - Stored Cross-Site Scripting
Feb 01, 2023
CVSS 5.4
EPSS 0.00
CVE-2022-43922 MEDIUM
IBM App Connect Enterprise Certified Container <6.2 - Info Disclosure
Feb 01, 2023
CVSS 5.3
EPSS 0.00
CVE-2022-43917 MEDIUM
IBM WebSphere App Server <9.0 - Info Disclosure
Jan 26, 2023
CVSS 5.9
EPSS 0.00
CVE-2022-43864 HIGH
IBM Business Automation Workflow 22.0.2 - Path Traversal
Jan 26, 2023
CVSS 7.5
EPSS 0.01
CVE-2022-22462 LOW
IBM Security Verify Governance 10.0.1 - Use of a Broken or Risky Cryptographic Algorithm
Jan 26, 2023
CVSS 3.7
EPSS 0.00
CVE-2022-41733 MEDIUM
IBM InfoSphere Information Server 11.7 - DoS
Jan 20, 2023
CVSS 5.3
EPSS 0.00
CVE-2022-39167 MEDIUM
IBM Spectrum Virtualize 7.8-8.5 - Exposure of Sensitive Information via Man-in-the-Middle
Jan 19, 2023
CVSS 5.9
EPSS 0.00
CVE-2022-47990 MEDIUM
IBM AIX 7.1-7.3 and VIOS 3.1 - Buffer Overflow in X11
Jan 18, 2023
CVSS 6.2
EPSS 0.00
CVE-2022-40615 MEDIUM
IBM Sterling Partner Engagement Manager 6.1, 6.2, and 6.2.1 - SQL Injection
Jan 11, 2023
CVSS 6.3
EPSS 0.00
Products
websphere_application_server 445 aix 393 db2 328 rational_quality_manager 202 sterling_b2b_integrator 195 infosphere_information_server 188 qradar_security_information_and_event_manager 187 maximo_asset_management 182 rational_doors_next_generation 153 rational_team_concert 142 rational_collaborative_lifecycle_management 141 rational_engineering_lifecycle_manager 141 websphere_portal 126 security_guardium 112 cognos_analytics 102 sterling_file_gateway 93 rational_rhapsody_design_manager 90 security_verify_access 90 websphere_mq 89 business_process_manager 88 lotus_domino 86 vios 85 rational_software_architect_design_manager 81 api_connect 79 lotus_notes 71 security_key_lifecycle_manager 70 db2_universal_database 66 concert 65 smartcloud_control_desk 65 urbancode_deploy 63
Quick Filters
Critical CVEs With Exploits In CISA KEV