ibm

8,202 tracked vulnerabilities.

CVE-2022-36776 MEDIUM
IBM Cloud Pak for Security 1.10.0.0-1.10.2.0 - Cross-Site Scripting
Nov 11, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-31772 MEDIUM
IBM MQ 8.0, 9.0 LTS, 9.1 CD, 9.1 LTS, 9.2 CD, 9.2 LTS - Authenticated Denial of Service via MQTT Channels
Nov 11, 2022
CVSS 5.3
EPSS 0.00
CVE-2022-34331 MEDIUM
IBM PowerVM Hypervisor - Improper Authentication
Nov 11, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-43574 HIGH
IBM Robotic Process Automation <21.0.6 - Privilege Escalation
Nov 03, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-42442 LOW
IBM Robotic Process Automation for Cloud Pak < 21.0.6 - Exposure of Sensitive Information via Tenant Owner Email
Nov 03, 2022
CVSS 3.3
EPSS 0.00
CVE-2022-40747 CRITICAL
IBM InfoSphere Information Server 11.7 - XML External Entity Injection
Nov 03, 2022
CVSS 9.1
EPSS 0.01
CVE-2022-40235 MEDIUM
IBM InfoSphere Information Server 11.7 - Denial of Service via Job Input Validation
Nov 03, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-40230 MEDIUM
IBM MQ Appliance 9.2 CD, 9.2 LTS, 9.3 CD, and 9.3 LTS - Insufficient Session Expiration
Nov 03, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-38712 MEDIUM
IBM WebSphere Application Server - SOAPAction Spoofing
Nov 03, 2022
CVSS 5.9
EPSS 0.00
CVE-2022-38710 MEDIUM
IBM Robotic Process Automation <21.0.2 - Info Disclosure
Nov 03, 2022
CVSS 5.3
EPSS 0.00
CVE-2022-35717 HIGH
IBM InfoSphere Information Server 11.7 - Command Injection
Nov 03, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-35642 MEDIUM
IBM InfoSphere Information Server 11.7 - XSS
Nov 03, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-35279 MEDIUM
IBM Business Automation Workflow Authenticated Sensitive Information Disclosure
Nov 03, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-34339 MEDIUM
IBM Cognos Analytics 11.1.0-11.1.7 - Authenticated Cleartext Storage of Sensitive Information
Nov 03, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-30615 MEDIUM
IBM InfoSphere Information Server 11.7 - Stored Cross-Site Scripting
Nov 03, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-30608 HIGH
IBM InfoSphere Information Server 11.7 - Cross-Site Request Forgery
Nov 03, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-22442 MEDIUM
IBM InfoSphere Information Server 11.7 - Privilege Escalation
Nov 03, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-22425 CRITICAL
IBM InfoSphere Information Server 11.7 - Code Injection
Nov 03, 2022
CVSS 9.8
EPSS 0.00
CVE-2022-38388 MEDIUM
IBM Navigator Mobile <3.4.1.2 - Info Disclosure
Oct 11, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-34334 MEDIUM
IBM Sterling Partner Engagement Manager 2.0 - Privilege Escalation
Oct 10, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-41291 MEDIUM
IBM InfoSphere Information Server 11.7 - Privilege Escalation
Oct 07, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-36772 MEDIUM
IBM InfoSphere Information Server 11.7 - Info Disclosure
Oct 07, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-34308 MEDIUM
IBM CICS TX 11.1 - Denial of Service via Improper Load Handling
Oct 07, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-30613 MEDIUM
IBM QRadar SIEM <7.5 - Info Disclosure
Oct 07, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-22493 HIGH
IBM WebSphere Automation <1.4.2 - CSRF
Oct 07, 2022
CVSS 8.8
EPSS 0.00
Products
websphere_application_server 445 aix 393 db2 328 rational_quality_manager 202 sterling_b2b_integrator 195 infosphere_information_server 188 qradar_security_information_and_event_manager 187 maximo_asset_management 182 rational_doors_next_generation 153 rational_team_concert 142 rational_collaborative_lifecycle_management 141 rational_engineering_lifecycle_manager 141 websphere_portal 126 security_guardium 112 cognos_analytics 102 sterling_file_gateway 93 rational_rhapsody_design_manager 90 security_verify_access 90 websphere_mq 89 business_process_manager 88 lotus_domino 86 vios 85 rational_software_architect_design_manager 81 api_connect 79 lotus_notes 71 security_key_lifecycle_manager 70 db2_universal_database 66 concert 65 smartcloud_control_desk 65 urbancode_deploy 63
Quick Filters
Critical CVEs With Exploits In CISA KEV