ibm

8,286 tracked vulnerabilities.

CVE-2021-39089 MEDIUM
IBM Cloud Pak for Security 1.10.0.0-1.10.6.0 - Authenticated Exposure of Sensitive Information via HTTP Request
Jan 20, 2023
CVSS 4.3
EPSS 0.01
CVE-2021-39011 MEDIUM
IBM Cloud Pak for Security - Info Disclosure
Jan 20, 2023
CVSS 4.2
EPSS 0.01
CVE-2021-38928 MEDIUM
IBM Sterling B2B Integrator Standard Edition - SSRF
Jan 04, 2023
CVSS 5.4
EPSS 0.00
CVE-2021-38997 MEDIUM
IBM API Connect <10.0.5.0 - HTTP Header Injection
Dec 12, 2022
CVSS 5.4
EPSS 0.00
CVE-2021-39077 MEDIUM
IBM Security Guardium 10.5-11.4 - Cleartext Transmission of Sensitive Information
Nov 03, 2022
CVSS 4.4
EPSS 0.00
CVE-2021-38924 HIGH
IBM Maximo Asset Management <7.6.1.2 - Info Disclosure
Sep 14, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-39045 MEDIUM
IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 - Insufficiently Protected Credentials via Autocomplete Feature
Sep 01, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-39009 MEDIUM
IBM Cognos Analytics <11.2.1 - Info Disclosure
Sep 01, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-29823 MEDIUM
IBM Cognos Analytics 11.1.7, 11.2.0, 11.2.1 - Cross-Site Request Forgery
Sep 01, 2022
CVSS 6.5
EPSS 0.00
CVE-2021-20468 MEDIUM
IBM Cognos Analytics <11.2.1 - CSRF
Sep 01, 2022
CVSS 6.5
EPSS 0.00
CVE-2021-29864 MEDIUM
IBM Security Identity Manager 6.0 and 6.0.2 - Open Redirect
Aug 30, 2022
CVSS 6.1
EPSS 0.00
CVE-2021-38934 MEDIUM
IBM Engineering Test Management <7.0.2 - XSS
Aug 29, 2022
CVSS 5.4
EPSS 0.00
CVE-2021-3669 MEDIUM
Linux Kernel - Denial of Service via Shared Memory Segment Count Exhaustion
Aug 26, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-29891 MEDIUM
IBM Power System AC922 & HMC 7063-CR2 Firmware - Unrestricted Dangerous File Upload via Site Identity Certificate
Aug 22, 2022
CVSS 4.9
EPSS 0.00
CVE-2021-39087 MEDIUM
IBM Sterling B2b Integrator < 6.0.3.6 - Incorrect Default Permissions
Aug 16, 2022
CVSS 6.5
EPSS 0.01
CVE-2021-39086 MEDIUM
IBM Sterling File Gateway 6.0.0.0-6.0.3.5, 6.1.0.0-6.1.0.4, 6.1.1.0-6.1.1.1 - Information Disclosure via Error Message
Aug 16, 2022
CVSS 5.3
EPSS 0.01
CVE-2021-39085 CRITICAL
IBM Sterling B2B Integrator 6.0.0.0-6.0.3.5, 6.1.0.0-6.1.0.4, 6.1.1.0-6.1.1.1 - SQL Injection
Aug 16, 2022
CVSS 9.8
EPSS 0.01
CVE-2021-39035 MEDIUM
IBM Sterling B2B Integrator 6.0.0.0-6.0.3.5, 6.1.0.0-6.1.0.4, 6.1.1.0-6.1.1.1 - Cross-Site Scripting
Aug 16, 2022
CVSS 5.4
EPSS 0.00
CVE-2021-39088 HIGH
IBM QRadar SIEM 7.3-7.5 - Local Privilege Escalation
Jul 28, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-38936 MEDIUM
IBM QRadar SIEM <7.5 - Info Disclosure
Jul 20, 2022
CVSS 4.9
EPSS 0.01
CVE-2021-29755 HIGH
IBM QRadar SIEM 7.3-7.5 - Improper Certificate Validation
Jul 20, 2022
CVSS 7.5
EPSS 0.00
CVE-2021-38868 MEDIUM
IBM Engineering Requirements Quality Assistant - CSRF
Jul 18, 2022
CVSS 6.5
EPSS 0.00
CVE-2021-29799 MEDIUM
IBM Engineering Requirements Quality Assistant - Info Disclosure
Jul 18, 2022
CVSS 6.5
EPSS 0.01
CVE-2021-29790 MEDIUM
IBM Engineering Requirements Quality Assistant On-Premises - Stored Cross-Site Scripting
Jul 18, 2022
CVSS 5.4
EPSS 0.00
CVE-2021-29788 MEDIUM
IBM Engineering Requirements Quality Assistant On-Premises - Stored Cross-Site Scripting
Jul 18, 2022
CVSS 5.4
EPSS 0.00