Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / ibm

ibm

8,153 tracked vulnerabilities.

CVE-2025-1722 MEDIUM

IBM Concert <2.1.0 - Info Disclosure

CVE-2025-1719 MEDIUM

IBM Concert <2.1.0 - Info Disclosure

CVE-2025-14115 HIGH

IBM Sterling Connect:Direct for UNIX Container - Info Disclosure

CVE-2025-13925 MEDIUM

IBM Aspera Console 3.4.7 - Sensitive Information Exposure in Log Files

CVE-2025-12985 HIGH

IBM Licensing Operator - Privilege Escalation

CVE-2025-64645 HIGH

IBM Concert 1.0.0-2.1.0 - Privilege Escalation via Symbolic Link Race Condition

CVE-2025-36230 MEDIUM

IBM Aspera Faspex 5.0.0-5.0.14.1 - HTML Injection

CVE-2025-36229 LOW

IBM Aspera Faspex <5.0.14.1 - Info Disclosure

CVE-2025-36228 LOW

IBM Aspera Faspex <5.0.14.1 - Privilege Escalation

CVE-2025-36192 MEDIUM

IBM DS8A00 and DS8900F - Missing Authorization in Safeguarded Copy / GDPS Logical Corruption Protection

CVE-2025-14687 MEDIUM

IBM Db2 Intelligence Center <1.1.3 - Privilege Escalation

CVE-2025-13915 CRITICAL

IBM API Connect <10.0.8.5, 10.0.11.0 - Auth Bypass

CVE-2025-1721 MEDIUM

IBM Concert <2.1.0 - Info Disclosure

CVE-2025-12771 HIGH

IBM Concert <2.1.0 - Buffer Overflow

CVE-2025-36154 MEDIUM

IBM Concert <2.1.0 - Info Disclosure

CVE-2025-36360 MEDIUM

IBM UrbanCode/DevOps Deploy Insufficient Session Expiration via Race Condition

CVE-2025-14148 MEDIUM

IBM UCD - IBM DevOps Deploy <8.1.2.3 - Info Disclosure

CVE-2025-13489 MEDIUM

IBM DevOps Deploy 8.1.0.0-8.1.2.3 - Cleartext Transmission of Sensitive Information

CVE-2025-13481 HIGH

IBM Aspera Orchestrator 4.0.0-4.1.0 - Authenticated OS Command Injection

CVE-2025-13214 HIGH

IBM Aspera Orchestrator 4.0.0-4.1.0 - SQL Injection

CVE-2025-13211 MEDIUM

IBM Aspera Orchestrator 4.0.0-4.1.0 - Authenticated Denial of Service in Email Service

CVE-2025-13148 HIGH

IBM Aspera Orchestrator <4.1.0 - Privilege Escalation

CVE-2025-36437 MEDIUM

IBM Planning Analytics Local 2.1.0-2.1.15 - Sensitive Information Disclosure in Error Messages

CVE-2025-36140 MEDIUM

IBM watsonx.data 2.2.0-2.2.1 - Authenticated Denial of Service via Ingestion Pods

CVE-2025-64650 MEDIUM

IBM Storage Defender Resiliency Service 2.0.0-2.0.18 - Sensitive Credential Disclosure in Log Files

Previous Page 9 of 327 Next

Products

websphere_application_server 444 aix 393 db2 327 rational_quality_manager 202 sterling_b2b_integrator 195 infosphere_information_server 188 qradar_security_information_and_event_manager 187 maximo_asset_management 182 rational_doors_next_generation 153 rational_team_concert 142 rational_collaborative_lifecycle_management 141 rational_engineering_lifecycle_manager 141 websphere_portal 126 security_guardium 112 cognos_analytics 102 sterling_file_gateway 93 rational_rhapsody_design_manager 90 security_verify_access 90 websphere_mq 89 business_process_manager 88 lotus_domino 86 vios 85 rational_software_architect_design_manager 81 api_connect 79 lotus_notes 71 security_key_lifecycle_manager 70 db2_universal_database 66 concert 65 smartcloud_control_desk 65 urbancode_deploy 63

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy