ibm
8,286 tracked vulnerabilities.
CVE-2022-34161
HIGH
IBM CICS TX 11.1 - Cross-Site Request Forgery
Aug 01, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-33955
MEDIUM
IBM CICS TX 11.1 - OS Command Injection via Back and Refresh Attack
Aug 01, 2022
CVSS 6.8
EPSS 0.01
CVE-2022-35716
MEDIUM
IBM UrbanCode Deploy <7.2.3.0 - Info Disclosure
Aug 01, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-34338
MEDIUM
IBM Robotic Process Automation 21.0.0-21.0.2 - Sensitive Information Disclosure
Aug 01, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-33169
MEDIUM
IBM Robotic Process Automation <21.0.3 - Info Disclosure
Aug 01, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-32750
MEDIUM
IBM DataPower Gateway Stored XSS in Web UI
Aug 01, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-31776
HIGH
IBM DataPower Gateway SSRF (10.0.1.0-10.0.1.8, 10.0.2.0-10.0.4.0, 10.5.0.0, 2018.4.1.0-2018.4.1.21)
Aug 01, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-31775
CRITICAL
IBM DataPower Gateway XML External Entity Injection
Aug 01, 2022
CVSS 9.1
EPSS 0.01
CVE-2022-31774
MEDIUM
IBM DataPower Gateway Stored XSS in Web UI
Aug 01, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-30616
HIGH
IBM Robotic Process Automation <21.0.3 - Privilege Escalation
Aug 01, 2022
CVSS 7.2
EPSS 0.01
CVE-2022-22505
HIGH
IBM Robotic Process Automation <21.0.3 - Info Disclosure
Aug 01, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-22334
MEDIUM
IBM Robotic Process Automation <21.0.3 - Info Disclosure
Aug 01, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-22326
LOW
IBM Datapower Gateway - Info Disclosure
Aug 01, 2022
CVSS 3.3
EPSS 0.00
CVE-2022-35643
CRITICAL
IBM PowerVM VIOS 3.1 - Denial of Service or System Configuration Tampering
Jul 29, 2022
CVSS 9.1
EPSS 0.01
CVE-2022-35639
HIGH
IBM Sterling Partner Engagement Manager <6.3 - DoS
Jul 26, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-35286
HIGH
IBM Security Verify Information Queue 10.0.2 - Cross-Site Request Forgery
Jul 26, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-22412
MEDIUM
IBM Robotic Process Automation <21.0.3 - Info Disclosure
Jul 26, 2022
CVSS 4.6
EPSS 0.00
CVE-2022-35288
MEDIUM
IBM Security Verify Information Queue 10.0.2 - Info Disclosure
Jul 25, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-35287
HIGH
IBM Security Verify Information Queue 10.0.2 - Use of Hard-coded Credentials
Jul 25, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-35285
HIGH
IBM Security Verify Information Queue 10.0.2 - Cross-Site Request Forgery
Jul 25, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-35284
HIGH
IBM Security Verify Information Queue 10.0.2 - Info Disclosure
Jul 25, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-22424
MEDIUM
IBM QRadar SIEM <7.5 - Info Disclosure
Jul 20, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-22417
MEDIUM
IBM Sterling Partner Engagement Manager <6.2 - XSS
Jul 19, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-22416
MEDIUM
IBM Sterling Partner Engagement Manager <6.1.2, 6.2, 22.2 - SSRF
Jul 19, 2022
CVSS 5.4
EPSS 0.00
CVE-2022-22360
HIGH
IBM Sterling Partner Engagement Manager - LDAP Injection
Jul 19, 2022
CVSS 8.8
EPSS 0.02
Products
websphere_application_server 465
aix 400
db2 339
rational_quality_manager 202
sterling_b2b_integrator 195
qradar_security_information_and_event_manager 190
infosphere_information_server 189
maximo_asset_management 182
rational_doors_next_generation 153
rational_team_concert 142
rational_collaborative_lifecycle_management 141
rational_engineering_lifecycle_manager 141
websphere_portal 126
security_guardium 112
cognos_analytics 104
sterling_file_gateway 93
vios 92
rational_rhapsody_design_manager 90
security_verify_access 90
websphere_mq 89
business_process_manager 88
lotus_domino 86
api_connect 81
rational_software_architect_design_manager 81
lotus_notes 71
security_key_lifecycle_manager 70
db2_universal_database 66
concert 65
smartcloud_control_desk 65
urbancode_deploy 65
Quick Filters