ibm
8,286 tracked vulnerabilities.
CVE-2021-39089
MEDIUM
IBM Cloud Pak for Security 1.10.0.0-1.10.6.0 - Authenticated Exposure of Sensitive Information via HTTP Request
Jan 20, 2023
CVSS 4.3
EPSS 0.01
CVE-2021-39011
MEDIUM
IBM Cloud Pak for Security - Info Disclosure
Jan 20, 2023
CVSS 4.2
EPSS 0.01
CVE-2021-38928
MEDIUM
IBM Sterling B2B Integrator Standard Edition - SSRF
Jan 04, 2023
CVSS 5.4
EPSS 0.00
CVE-2021-38997
MEDIUM
IBM API Connect <10.0.5.0 - HTTP Header Injection
Dec 12, 2022
CVSS 5.4
EPSS 0.00
CVE-2021-39077
MEDIUM
IBM Security Guardium 10.5-11.4 - Cleartext Transmission of Sensitive Information
Nov 03, 2022
CVSS 4.4
EPSS 0.00
CVE-2021-38924
HIGH
IBM Maximo Asset Management <7.6.1.2 - Info Disclosure
Sep 14, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-39045
MEDIUM
IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 - Insufficiently Protected Credentials via Autocomplete Feature
Sep 01, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-39009
MEDIUM
IBM Cognos Analytics <11.2.1 - Info Disclosure
Sep 01, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-29823
MEDIUM
IBM Cognos Analytics 11.1.7, 11.2.0, 11.2.1 - Cross-Site Request Forgery
Sep 01, 2022
CVSS 6.5
EPSS 0.00
CVE-2021-20468
MEDIUM
IBM Cognos Analytics <11.2.1 - CSRF
Sep 01, 2022
CVSS 6.5
EPSS 0.00
CVE-2021-29864
MEDIUM
IBM Security Identity Manager 6.0 and 6.0.2 - Open Redirect
Aug 30, 2022
CVSS 6.1
EPSS 0.00
CVE-2021-38934
MEDIUM
IBM Engineering Test Management <7.0.2 - XSS
Aug 29, 2022
CVSS 5.4
EPSS 0.00
CVE-2021-3669
MEDIUM
Linux Kernel - Denial of Service via Shared Memory Segment Count Exhaustion
Aug 26, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-29891
MEDIUM
IBM Power System AC922 & HMC 7063-CR2 Firmware - Unrestricted Dangerous File Upload via Site Identity Certificate
Aug 22, 2022
CVSS 4.9
EPSS 0.00
CVE-2021-39087
MEDIUM
IBM Sterling B2b Integrator < 6.0.3.6 - Incorrect Default Permissions
Aug 16, 2022
CVSS 6.5
EPSS 0.01
CVE-2021-39086
MEDIUM
IBM Sterling File Gateway 6.0.0.0-6.0.3.5, 6.1.0.0-6.1.0.4, 6.1.1.0-6.1.1.1 - Information Disclosure via Error Message
Aug 16, 2022
CVSS 5.3
EPSS 0.01
CVE-2021-39085
CRITICAL
IBM Sterling B2B Integrator 6.0.0.0-6.0.3.5, 6.1.0.0-6.1.0.4, 6.1.1.0-6.1.1.1 - SQL Injection
Aug 16, 2022
CVSS 9.8
EPSS 0.01
CVE-2021-39035
MEDIUM
IBM Sterling B2B Integrator 6.0.0.0-6.0.3.5, 6.1.0.0-6.1.0.4, 6.1.1.0-6.1.1.1 - Cross-Site Scripting
Aug 16, 2022
CVSS 5.4
EPSS 0.00
CVE-2021-39088
HIGH
IBM QRadar SIEM 7.3-7.5 - Local Privilege Escalation
Jul 28, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-38936
MEDIUM
IBM QRadar SIEM <7.5 - Info Disclosure
Jul 20, 2022
CVSS 4.9
EPSS 0.01
CVE-2021-29755
HIGH
IBM QRadar SIEM 7.3-7.5 - Improper Certificate Validation
Jul 20, 2022
CVSS 7.5
EPSS 0.00
CVE-2021-38868
MEDIUM
IBM Engineering Requirements Quality Assistant - CSRF
Jul 18, 2022
CVSS 6.5
EPSS 0.00
CVE-2021-29799
MEDIUM
IBM Engineering Requirements Quality Assistant - Info Disclosure
Jul 18, 2022
CVSS 6.5
EPSS 0.01
CVE-2021-29790
MEDIUM
IBM Engineering Requirements Quality Assistant On-Premises - Stored Cross-Site Scripting
Jul 18, 2022
CVSS 5.4
EPSS 0.00
CVE-2021-29788
MEDIUM
IBM Engineering Requirements Quality Assistant On-Premises - Stored Cross-Site Scripting
Jul 18, 2022
CVSS 5.4
EPSS 0.00
Products
websphere_application_server 465
aix 400
db2 339
rational_quality_manager 202
sterling_b2b_integrator 195
qradar_security_information_and_event_manager 190
infosphere_information_server 189
maximo_asset_management 182
rational_doors_next_generation 153
rational_team_concert 142
rational_collaborative_lifecycle_management 141
rational_engineering_lifecycle_manager 141
websphere_portal 126
security_guardium 112
cognos_analytics 104
sterling_file_gateway 93
vios 92
rational_rhapsody_design_manager 90
security_verify_access 90
websphere_mq 89
business_process_manager 88
lotus_domino 86
api_connect 81
rational_software_architect_design_manager 81
lotus_notes 71
security_key_lifecycle_manager 70
db2_universal_database 66
concert 65
smartcloud_control_desk 65
urbancode_deploy 65
Quick Filters