ibm
8,286 tracked vulnerabilities.
CVE-2021-38993
MEDIUM
IBM AIX 7.1-7.3 and VIOS 3.1 - Denial of Service via smbcd Daemon
Feb 25, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-39038
MEDIUM
IBM WebSphere Application Server <22.0.0.2 - CSRF
Feb 24, 2022
CVSS 5.4
EPSS 0.01
CVE-2021-38995
MEDIUM
IBM AIX 7.1-7.3 and VIOS 3.1 - Denial of Service
Feb 24, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-38994
MEDIUM
IBM AIX 7.1-7.3 and VIOS 3.1 - Denial of Service
Feb 24, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-39026
MEDIUM
IBM Guardium Data Encryption 5.0.0.2 and 5.0.0.3 - Cleartext Transmission of Sensitive Information
Feb 18, 2022
CVSS 5.9
EPSS 0.01
CVE-2021-38935
HIGH
IBM Maximo Asset Mgmt <7.6.1.2 - Info Disclosure
Feb 18, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-39034
HIGH
IBM MQ 9.1.0.0-9.1.0.8 - Denial of Service in Channel Process
Feb 17, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-39080
MEDIUM
IBM Cognos Analytics Mobile <1.1.14 - Info Disclosure
Feb 14, 2022
CVSS 6.5
EPSS 0.01
CVE-2021-39079
MEDIUM
IBM Cognos Analytics Mobile < 1.1.14 - Cross-Site Scripting
Feb 14, 2022
CVSS 5.4
EPSS 0.00
CVE-2021-38960
HIGH
IBM Power System AC922 and HMC Firmware - Unauthenticated Exposure of Sensitive Information
Feb 04, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-39021
MEDIUM
IBM Guardium Data Encryption 5.0.0.2 - Username Enumeration via Observable Discrepancy
Feb 02, 2022
CVSS 5.3
EPSS 0.01
CVE-2021-39070
CRITICAL
IBM Security Verify Access <10.0.2.0 - Privilege Escalation
Feb 02, 2022
CVSS 9.8
EPSS 0.02
CVE-2021-39066
HIGH
IBM Financial Transaction Manager 3.2.4 - Info Disclosure
Feb 02, 2022
CVSS 8.8
EPSS 0.01
CVE-2021-39044
HIGH
IBM Financial Transaction Manager 3.2.4 - Cross-Site Request Forgery
Feb 02, 2022
CVSS 8.8
EPSS 0.00
CVE-2021-29846
LOW
IBM Security Guardium Insights 3.0 - Authenticated Sensitive Information Exposure via Insufficient Session Expiration
Jan 26, 2022
CVSS 2.7
EPSS 0.01
CVE-2021-29845
HIGH
IBM Security Guardium Insights 3.0 - Authenticated Unauthorized Action via Improper Input Validation
Jan 26, 2022
CVSS 8.8
EPSS 0.01
CVE-2021-29838
MEDIUM
IBM Security Guardium Insights 3.0 - Exposure of Sensitive Information via Missing HSTS
Jan 26, 2022
CVSS 5.9
EPSS 0.01
CVE-2021-39031
HIGH
IBM WebSphere Application Server Liberty 17.0.0.3-22.0.0.1 - Authenticated LDAP Injection
Jan 25, 2022
CVSS 8.8
EPSS 0.02
CVE-2021-29785
MEDIUM
IBM Security SOAR <V44 - Info Disclosure
Jan 20, 2022
CVSS 5.9
EPSS 0.01
CVE-2021-29872
MEDIUM
IBM Cloud Pak for Automation 21.0.1-21.0.2 - HTTP Header Injection via HOST Header
Jan 18, 2022
CVSS 5.4
EPSS 0.01
CVE-2021-38965
HIGH
IBM FileNet Content Manager <5.5.8 - Command Injection
Jan 17, 2022
CVSS 8.8
EPSS 0.02
CVE-2021-39032
MEDIUM
IBM Sterling Gentran:Server for Microsoft Windows 5.3 - Sensitive Information Exposure in Log Files
Jan 14, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-39056
MEDIUM
IBM i 7.1-7.4 - Authenticated Denial of Service in Extended Dynamic Remote SQL Server
Jan 13, 2022
CVSS 6.5
EPSS 0.01
CVE-2021-38991
HIGH
IBM AIX 7.0-7.2 and VIOS 3.1 - Local Code Execution via lscore Command
Jan 11, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-29701
MEDIUM
IBM Engineering Workflow Management <7.0.2 - Info Disclosure
Jan 11, 2022
CVSS 4.3
EPSS 0.01
Products
websphere_application_server 465
aix 400
db2 339
rational_quality_manager 202
sterling_b2b_integrator 195
qradar_security_information_and_event_manager 190
infosphere_information_server 189
maximo_asset_management 182
rational_doors_next_generation 153
rational_team_concert 142
rational_collaborative_lifecycle_management 141
rational_engineering_lifecycle_manager 141
websphere_portal 126
security_guardium 112
cognos_analytics 104
sterling_file_gateway 93
vios 92
rational_rhapsody_design_manager 90
security_verify_access 90
websphere_mq 89
business_process_manager 88
lotus_domino 86
api_connect 81
rational_software_architect_design_manager 81
lotus_notes 71
security_key_lifecycle_manager 70
db2_universal_database 66
concert 65
smartcloud_control_desk 65
urbancode_deploy 65
Quick Filters