ibm

8,286 tracked vulnerabilities.

CVE-2022-22442 MEDIUM
IBM InfoSphere Information Server 11.7 - Privilege Escalation
Nov 03, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-22425 CRITICAL
IBM InfoSphere Information Server 11.7 - Code Injection
Nov 03, 2022
CVSS 9.8
EPSS 0.01
CVE-2022-38388 MEDIUM
IBM Navigator Mobile <3.4.1.2 - Info Disclosure
Oct 11, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-34334 MEDIUM
IBM Sterling Partner Engagement Manager 2.0 - Privilege Escalation
Oct 10, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-41291 MEDIUM
IBM InfoSphere Information Server 11.7 - Privilege Escalation
Oct 07, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-36772 MEDIUM
IBM InfoSphere Information Server 11.7 - Info Disclosure
Oct 07, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-34308 MEDIUM
IBM CICS TX 11.1 - Denial of Service via Improper Load Handling
Oct 07, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-30613 MEDIUM
IBM QRadar SIEM <7.5 - Info Disclosure
Oct 07, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-22493 HIGH
IBM WebSphere Automation <1.4.2 - CSRF
Oct 07, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-22480 HIGH
IBM QRadar SIEM <7.5 - Info Disclosure
Oct 07, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-41294 MEDIUM
IBM Robotic Process Automation <21.0.5 - SSRF
Oct 06, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-38709 MEDIUM
IBM Robotic Process Automation <21.0.3 - XSS
Oct 06, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-36774 MEDIUM
IBM Robotic Process Automation <21.0.3 - Man In The Middle
Oct 06, 2022
CVSS 5.3
EPSS 0.00
CVE-2022-22503 MEDIUM
IBM Robotic Process Automation 21.0.0 - CSRF
Oct 06, 2022
CVSS 6.1
EPSS 0.01
CVE-2022-39168 HIGH
IBM Robotic Process Automation - Credential Exposure in Upgrade Logs
Sep 29, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-36771 MEDIUM
IBM QRadar User Behavior Analytics < 4.1.9 - Authenticated Sensitive Information Disclosure
Sep 28, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-35722 MEDIUM
IBM Jazz for Service Management < 1.1.3.16 - Stored Cross-Site Scripting
Sep 28, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-35282 MEDIUM
IBM WebSphere Application Server 7.0.0.0-7.0.0.44 - Server-Side Request Forgery
Sep 28, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-22387 MEDIUM
IBM Application Gateway - Stored Cross-Site Scripting in Web UI
Sep 28, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-40748 MEDIUM
IBM InfoSphere Information Server 11.7 - Cross-Site Scripting
Sep 23, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-35721 MEDIUM
IBM Jazz for Service Management 1.1.3 - XSS
Sep 23, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-34348 HIGH
IBM Sterling Partner Engagement Manager 2.0-6.1.2.6 - XML External Entity Injection
Sep 23, 2022
CVSS 7.1
EPSS 0.01
CVE-2022-22423 MEDIUM
IBM Common Cryptographic Architecture 5.0.0-5.7.11 and 7.0.0-7.3.43 - Denial of Service via Improper Input Validation
Sep 23, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-40616 HIGH
IBM Maximo Asset Management 7.6.1.1-7.6.1.3 - Authentication Bypass
Sep 21, 2022
CVSS 8.1
EPSS 0.00
CVE-2022-40608 HIGH
IBM Spectrum Protect Plus 10.1.6-10.1.11 - Path Traversal via Microsoft File Systems Restore URL
Sep 19, 2022
CVSS 7.5
EPSS 0.02