ibm
8,286 tracked vulnerabilities.
CVE-2022-22442
MEDIUM
IBM InfoSphere Information Server 11.7 - Privilege Escalation
Nov 03, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-22425
CRITICAL
IBM InfoSphere Information Server 11.7 - Code Injection
Nov 03, 2022
CVSS 9.8
EPSS 0.01
CVE-2022-38388
MEDIUM
IBM Navigator Mobile <3.4.1.2 - Info Disclosure
Oct 11, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-34334
MEDIUM
IBM Sterling Partner Engagement Manager 2.0 - Privilege Escalation
Oct 10, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-41291
MEDIUM
IBM InfoSphere Information Server 11.7 - Privilege Escalation
Oct 07, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-36772
MEDIUM
IBM InfoSphere Information Server 11.7 - Info Disclosure
Oct 07, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-34308
MEDIUM
IBM CICS TX 11.1 - Denial of Service via Improper Load Handling
Oct 07, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-30613
MEDIUM
IBM QRadar SIEM <7.5 - Info Disclosure
Oct 07, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-22493
HIGH
IBM WebSphere Automation <1.4.2 - CSRF
Oct 07, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-22480
HIGH
IBM QRadar SIEM <7.5 - Info Disclosure
Oct 07, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-41294
MEDIUM
IBM Robotic Process Automation <21.0.5 - SSRF
Oct 06, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-38709
MEDIUM
IBM Robotic Process Automation <21.0.3 - XSS
Oct 06, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-36774
MEDIUM
IBM Robotic Process Automation <21.0.3 - Man In The Middle
Oct 06, 2022
CVSS 5.3
EPSS 0.00
CVE-2022-22503
MEDIUM
IBM Robotic Process Automation 21.0.0 - CSRF
Oct 06, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-39168
HIGH
IBM Robotic Process Automation - Credential Exposure in Upgrade Logs
Sep 29, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-36771
MEDIUM
IBM QRadar User Behavior Analytics < 4.1.9 - Authenticated Sensitive Information Disclosure
Sep 28, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-35722
MEDIUM
IBM Jazz for Service Management < 1.1.3.16 - Stored Cross-Site Scripting
Sep 28, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-35282
MEDIUM
IBM WebSphere Application Server 7.0.0.0-7.0.0.44 - Server-Side Request Forgery
Sep 28, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-22387
MEDIUM
IBM Application Gateway - Stored Cross-Site Scripting in Web UI
Sep 28, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-40748
MEDIUM
IBM InfoSphere Information Server 11.7 - Cross-Site Scripting
Sep 23, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-35721
MEDIUM
IBM Jazz for Service Management 1.1.3 - XSS
Sep 23, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-34348
HIGH
IBM Sterling Partner Engagement Manager 2.0-6.1.2.6 - XML External Entity Injection
Sep 23, 2022
CVSS 7.1
EPSS 0.01
CVE-2022-22423
MEDIUM
IBM Common Cryptographic Architecture 5.0.0-5.7.11 and 7.0.0-7.3.43 - Denial of Service via Improper Input Validation
Sep 23, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-40616
HIGH
IBM Maximo Asset Management 7.6.1.1-7.6.1.3 - Authentication Bypass
Sep 21, 2022
CVSS 8.1
EPSS 0.00
CVE-2022-40608
HIGH
IBM Spectrum Protect Plus 10.1.6-10.1.11 - Path Traversal via Microsoft File Systems Restore URL
Sep 19, 2022
CVSS 7.5
EPSS 0.02
Products
websphere_application_server 465
aix 400
db2 339
rational_quality_manager 202
sterling_b2b_integrator 195
qradar_security_information_and_event_manager 190
infosphere_information_server 189
maximo_asset_management 182
rational_doors_next_generation 153
rational_team_concert 142
rational_collaborative_lifecycle_management 141
rational_engineering_lifecycle_manager 141
websphere_portal 126
security_guardium 112
cognos_analytics 104
sterling_file_gateway 93
vios 92
rational_rhapsody_design_manager 90
security_verify_access 90
websphere_mq 89
business_process_manager 88
lotus_domino 86
api_connect 81
rational_software_architect_design_manager 81
lotus_notes 71
security_key_lifecycle_manager 70
db2_universal_database 66
concert 65
smartcloud_control_desk 65
urbancode_deploy 65
Quick Filters