ibm

8,202 tracked vulnerabilities.

CVE-2022-43901 MEDIUM
IBM WebSphere Automation <1.4.3 - Info Disclosure
Dec 01, 2022
CVSS 5.7
EPSS 0.00
CVE-2022-43900 MEDIUM
IBM WebSphere Automation for IBM Cloud Pak for Watson AIOps < 1.4.3 - Unauthenticated Outbound Network Connection
Dec 01, 2022
CVSS 5.3
EPSS 0.00
CVE-2022-41297 MEDIUM
IBM Db2U 3.5-4.5 - Cross-Site Request Forgery
Dec 01, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-41732 MEDIUM
IBM Maximo Mobile <8.9 - Info Disclosure
Nov 28, 2022
CVSS 6.2
EPSS 0.00
CVE-2022-40228 LOW
IBM DataPower Gateway Insufficient Session Expiration
Nov 22, 2022
CVSS 3.7
EPSS 0.00
CVE-2022-40746 HIGH
IBM i Access Client Solutions 1.1.2-1.1.9.0 - Authenticated Arbitrary Code Execution via DLL Hijacking
Nov 21, 2022
CVSS 7.2
EPSS 0.00
CVE-2022-40751 MEDIUM
IBM UrbanCode Deploy Credential Exposure via LDAP Search
Nov 17, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-38390 MEDIUM
IBM Business Automation Workflow - XSS
Nov 17, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-40752 CRITICAL
IBM InfoSphere Information Server 11.7 - Command Injection
Nov 16, 2022
CVSS 9.8
EPSS 0.03
CVE-2022-34354 MEDIUM
IBM Sterling Partner Engagement Manager 2.0 - Info Disclosure
Nov 16, 2022
CVSS 4.0
EPSS 0.00
CVE-2022-40753 MEDIUM
IBM InfoSphere Information Server 11.7 - Stored Cross-Site Scripting
Nov 15, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-38385 HIGH
IBM Cloud Pak for Security <1.10.2.0 - Info Disclosure
Nov 15, 2022
CVSS 7.1
EPSS 0.00
CVE-2022-34320 MEDIUM
IBM CICS TX 11.1 - Use of a Broken or Risky Cryptographic Algorithm
Nov 14, 2022
CVSS 5.9
EPSS 0.00
CVE-2022-34317 MEDIUM
IBM CICS TX 11.1 - Cross-Site Scripting in Web UI
Nov 14, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-34316 LOW
IBM CICS TX 11.1 - Cross-Site Scripting via HTTP Headers
Nov 14, 2022
CVSS 3.7
EPSS 0.00
CVE-2022-34315 MEDIUM
IBM CICS TX 11.1 - Cross-Site Scripting in Web UI
Nov 14, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-34314 MEDIUM
IBM CICS TX 11.1 - Exposure of Sensitive Information via Insecure Permission Settings
Nov 14, 2022
CVSS 4.0
EPSS 0.00
CVE-2022-38705 MEDIUM
IBM CICS TX 11.1 - Reverse Tabnabbing
Nov 14, 2022
CVSS 5.3
EPSS 0.00
CVE-2022-34329 MEDIUM
IBM CICS TX 11.7 - Exposure of Sensitive Information via HTTP Response Headers
Nov 14, 2022
CVSS 5.3
EPSS 0.00
CVE-2022-34319 MEDIUM
IBM CICS TX 11.7 - Use of a Broken or Risky Cryptographic Algorithm
Nov 14, 2022
CVSS 5.9
EPSS 0.00
CVE-2022-34313 MEDIUM
IBM CICS TX 11.1 - Exposure of Sensitive Information via Insecure Cookie Transmission
Nov 14, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-34312 MEDIUM
IBM CICS TX 11.1 - Unauthorized Exposure of Sensitive Information via Local Web Page Storage
Nov 14, 2022
CVSS 4.0
EPSS 0.00
CVE-2022-35719 MEDIUM
IBM MQ Internet Pass-Thru <9.2 - Info Disclosure
Nov 14, 2022
CVSS 5.1
EPSS 0.00
CVE-2022-40750 MEDIUM
IBM WebSphere Application Server 8.5 and 9.0 - Cross-Site Scripting
Nov 11, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-38387 HIGH
IBM Cloud Pak for Security (CP4S) <1.10.2.0 - Command Injection
Nov 11, 2022
CVSS 7.1
EPSS 0.00
Products
websphere_application_server 445 aix 393 db2 328 rational_quality_manager 202 sterling_b2b_integrator 195 infosphere_information_server 188 qradar_security_information_and_event_manager 187 maximo_asset_management 182 rational_doors_next_generation 153 rational_team_concert 142 rational_collaborative_lifecycle_management 141 rational_engineering_lifecycle_manager 141 websphere_portal 126 security_guardium 112 cognos_analytics 102 sterling_file_gateway 93 rational_rhapsody_design_manager 90 security_verify_access 90 websphere_mq 89 business_process_manager 88 lotus_domino 86 vios 85 rational_software_architect_design_manager 81 api_connect 79 lotus_notes 71 security_key_lifecycle_manager 70 db2_universal_database 66 concert 65 smartcloud_control_desk 65 urbancode_deploy 63
Quick Filters
Critical CVEs With Exploits In CISA KEV