ibm

8,202 tracked vulnerabilities.

CVE-2021-39013 MEDIUM
IBM Cloud Pak for Security <1.7.2.0 - Info Disclosure
Dec 22, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-38966 MEDIUM
IBM Cloud Pak for Automation 21.0.2 - XSS
Dec 21, 2021
CVSS 5.4
EPSS 0.00
CVE-2021-38900 MEDIUM
IBM BPM 8.5-8.6 & BAW 18.0-21.0 - Authenticated Info Disclosure via Improper Access Controls
Dec 21, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-38893 MEDIUM
IBM Business Process Manager 8.5-8.6 and Business Automation Workflow 18.0-21.0 - Stored Cross-Site Scripting
Dec 21, 2021
CVSS 5.4
EPSS 0.00
CVE-2021-38883 MEDIUM
IBM Business Automation Workflow <21.0 - XSS
Dec 17, 2021
CVSS 5.4
EPSS 0.00
CVE-2021-29847 MEDIUM
IBM Power System S821LC Server (8001-12C) OP825.50 - Info Disclosure
Dec 15, 2021
CVSS 5.9
EPSS 0.00
CVE-2021-38950 HIGH
IBM MQ on HPE NonStop <8.1.0 - Privilege Escalation
Dec 14, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-39063 CRITICAL
IBM Spectrum Protect Plus 10.1.0-10.1.8.x - Origin Validation Error via CORS Misconfiguration
Dec 13, 2021
CVSS 9.1
EPSS 0.00
CVE-2021-39057 HIGH
IBM Spectrum Protect Plus 10.1.0-10.1.8.x - Authenticated Server-Side Request Forgery
Dec 13, 2021
CVSS 8.1
EPSS 0.00
CVE-2021-39050 HIGH
IBM i2 Analyst's Notebook 9.2.0-9.2.2 - Stack-Based Buffer Overflow
Dec 13, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-39049 HIGH
IBM i2 Analyst's Notebook 9.2.0-9.2.2 - Stack-Based Buffer Overflow
Dec 13, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-39048 MEDIUM
IBM Spectrum Protect Client 7.1 and 8.1 - Stack-Based Buffer Overflow
Dec 13, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-38901 MEDIUM
IBM Spectrum Protect Operations Center 7.1 - Info Disclosure
Dec 13, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-39065 CRITICAL
IBM Spectrum Copy Data Management < 2.2.13 - Remote Code Execution via Admin Console Upload Certificate Function
Dec 13, 2021
CVSS 9.8
EPSS 0.04
CVE-2021-39064 HIGH
IBM Spectrum Copy Data Management <= 2.2.13 - Improper Authentication via Default Credentials
Dec 13, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-39058 HIGH
IBM Spectrum Copy Data Management < 2.2.13 - Use of a Broken or Risky Cryptographic Algorithm
Dec 13, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-39054 MEDIUM
IBM Spectrum Copy Data Management <2.2.13 - CSRF
Dec 13, 2021
CVSS 5.4
EPSS 0.00
CVE-2021-39053 HIGH
IBM Spectrum Copy Data Mgmt <2.2.13 - Info Disclosure
Dec 13, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-39052 CRITICAL
IBM Spectrum Copy Data Mgmt <2.2.13 - Auth Bypass
Dec 13, 2021
CVSS 9.8
EPSS 0.01
CVE-2021-38947 HIGH
IBM Spectrum Copy Data Mgmt <2.2.13 - Info Disclosure
Dec 13, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-38937 MEDIUM
IBM PowerVM Hypervisor FW940, FW950, and FW1010 - Authenticated Denial of Service via IBMi Hypervisor Call
Dec 10, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-38917 CRITICAL
IBM PowerVM Hypervisor - Memory Corruption
Dec 10, 2021
CVSS 9.1
EPSS 0.00
CVE-2021-39002 HIGH
IBM DB2 9.7, 10.1, 10.5, 11.1, 11.5 - Use of a Broken or Risky Cryptographic Algorithm
Dec 09, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-38951 HIGH
IBM WebSphere Application Server <9.0 - DoS
Dec 09, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-38931 MEDIUM
IBM Db2 <11.1,11.5 - Info Disclosure
Dec 09, 2021
CVSS 6.5
EPSS 0.00
Products
websphere_application_server 445 aix 393 db2 328 rational_quality_manager 202 sterling_b2b_integrator 195 infosphere_information_server 188 qradar_security_information_and_event_manager 187 maximo_asset_management 182 rational_doors_next_generation 153 rational_team_concert 142 rational_collaborative_lifecycle_management 141 rational_engineering_lifecycle_manager 141 websphere_portal 126 security_guardium 112 cognos_analytics 102 sterling_file_gateway 93 rational_rhapsody_design_manager 90 security_verify_access 90 websphere_mq 89 business_process_manager 88 lotus_domino 86 vios 85 rational_software_architect_design_manager 81 api_connect 79 lotus_notes 71 security_key_lifecycle_manager 70 db2_universal_database 66 concert 65 smartcloud_control_desk 65 urbancode_deploy 63
Quick Filters
Critical CVEs With Exploits In CISA KEV