ibm
8,286 tracked vulnerabilities.
CVE-2021-38972
MEDIUM
IBM Tivoli Key Lifecycle Manager <4.2 - Info Disclosure
Nov 12, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-38887
MEDIUM
IBM InfoSphere Information Server 11.7 - Info Disclosure
Nov 10, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-29843
MEDIUM
IBM MQ Appliance 9.1.0.0-9.1.0.8 and 9.1.0.0-9.2.2 - Denial of Service via Message Property Processing
Nov 08, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-29735
MEDIUM
IBM Security Guardium 10.5-11.3 - Stored Cross-Site Scripting
Nov 08, 2021
CVSS 5.4
EPSS 0.00
CVE-2021-29753
MEDIUM
IBM BA Workflow 18-21 & BPM 8.5-8.6 Cleartext Transmission of Sensitive Info
Nov 05, 2021
CVSS 5.9
EPSS 0.01
CVE-2021-38948
CRITICAL
IBM InfoSphere Information Server 11.7 - XXE
Nov 02, 2021
CVSS 9.1
EPSS 0.02
CVE-2021-29888
HIGH
IBM InfoSphere Information Server 11.7 - Cross-Site Request Forgery
Nov 02, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-29875
HIGH
IBM InfoSphere Information Server 11.7 - Info Disclosure
Nov 02, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-29771
MEDIUM
IBM InfoSphere Information Server 11.7 - Cross-Site Scripting
Nov 02, 2021
CVSS 5.4
EPSS 0.00
CVE-2021-29738
MEDIUM
IBM InfoSphere Information Server 11.7 - Authenticated Server-Side Request Forgery
Nov 02, 2021
CVSS 5.4
EPSS 0.00
CVE-2021-29737
HIGH
IBM InfoSphere Information Server 11.7 - Improper Certificate Validation in Data Flow Designer Engine
Nov 02, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-29868
MEDIUM
IBM i2 iBase 8.9.13 and 9.0.0 - Insufficient Session Expiration
Oct 27, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-29844
HIGH
IBM Jazz Team Server - Authenticated Server-Side Request Forgery
Oct 27, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-29786
MEDIUM
IBM Engineering Lifecycle Optimization - Authenticated Cleartext Storage of Sensitive Information
Oct 27, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-29774
HIGH
IBM Jazz Team Server - Privilege Escalation
Oct 27, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-29713
MEDIUM
IBM Engineering Lifecycle Optimization - Cross-Site Scripting
Oct 27, 2021
CVSS 5.4
EPSS 0.00
CVE-2021-29673
MEDIUM
IBM Jazz Team Server - Stored Cross-Site Scripting
Oct 27, 2021
CVSS 5.4
EPSS 0.00
CVE-2021-20526
MEDIUM
IBM Planning Analytics 2.0 - Info Disclosure
Oct 27, 2021
CVSS 5.3
EPSS 0.01
CVE-2021-29835
MEDIUM
IBM Business Automation Workflow 18.0, 19.0, 20.0, 21.0 - Cross-Site Scripting
Oct 22, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-29883
MEDIUM
IBM Transformation Extender Advanced 9.0.0.0-9.0.2.4 - Missing Encryption of Sensitive Data in Session Cookies
Oct 21, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-29873
HIGH
IBM Spectrum Virtualize 7.8.0.0-8.3.x - DoS and Info Disclosure via Restricted Shell Escape
Oct 21, 2021
CVSS 8.1
EPSS 0.01
CVE-2021-38896
MEDIUM
IBM QRadar Advisor 2.5.0-2.6.1 - Stored Cross-Site Scripting
Oct 20, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-38911
MEDIUM
IBM Security Risk Manager on CP4S <1.7.0.0 - Info Disclosure
Oct 19, 2021
CVSS 4.9
EPSS 0.01
CVE-2021-29912
MEDIUM
IBM Security Risk Manager on CP4S 1.7.0.0 - Stored Cross-Site Scripting
Oct 19, 2021
CVSS 5.4
EPSS 0.00
CVE-2021-29878
MEDIUM
IBM Business Automation Workflow 18.0, 19.0, 20.0, 21.0 - Cross-Site Scripting
Oct 18, 2021
CVSS 5.4
EPSS 0.01
Products
websphere_application_server 465
aix 400
db2 339
rational_quality_manager 202
sterling_b2b_integrator 195
qradar_security_information_and_event_manager 190
infosphere_information_server 189
maximo_asset_management 182
rational_doors_next_generation 153
rational_team_concert 142
rational_collaborative_lifecycle_management 141
rational_engineering_lifecycle_manager 141
websphere_portal 126
security_guardium 112
cognos_analytics 104
sterling_file_gateway 93
vios 92
rational_rhapsody_design_manager 90
security_verify_access 90
websphere_mq 89
business_process_manager 88
lotus_domino 86
api_connect 81
rational_software_architect_design_manager 81
lotus_notes 71
security_key_lifecycle_manager 70
db2_universal_database 66
concert 65
smartcloud_control_desk 65
urbancode_deploy 65
Quick Filters