ibm

8,286 tracked vulnerabilities.

CVE-2021-38972 MEDIUM
IBM Tivoli Key Lifecycle Manager <4.2 - Info Disclosure
Nov 12, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-38887 MEDIUM
IBM InfoSphere Information Server 11.7 - Info Disclosure
Nov 10, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-29843 MEDIUM
IBM MQ Appliance 9.1.0.0-9.1.0.8 and 9.1.0.0-9.2.2 - Denial of Service via Message Property Processing
Nov 08, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-29735 MEDIUM
IBM Security Guardium 10.5-11.3 - Stored Cross-Site Scripting
Nov 08, 2021
CVSS 5.4
EPSS 0.00
CVE-2021-29753 MEDIUM
IBM BA Workflow 18-21 & BPM 8.5-8.6 Cleartext Transmission of Sensitive Info
Nov 05, 2021
CVSS 5.9
EPSS 0.01
CVE-2021-38948 CRITICAL
IBM InfoSphere Information Server 11.7 - XXE
Nov 02, 2021
CVSS 9.1
EPSS 0.02
CVE-2021-29888 HIGH
IBM InfoSphere Information Server 11.7 - Cross-Site Request Forgery
Nov 02, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-29875 HIGH
IBM InfoSphere Information Server 11.7 - Info Disclosure
Nov 02, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-29771 MEDIUM
IBM InfoSphere Information Server 11.7 - Cross-Site Scripting
Nov 02, 2021
CVSS 5.4
EPSS 0.00
CVE-2021-29738 MEDIUM
IBM InfoSphere Information Server 11.7 - Authenticated Server-Side Request Forgery
Nov 02, 2021
CVSS 5.4
EPSS 0.00
CVE-2021-29737 HIGH
IBM InfoSphere Information Server 11.7 - Improper Certificate Validation in Data Flow Designer Engine
Nov 02, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-29868 MEDIUM
IBM i2 iBase 8.9.13 and 9.0.0 - Insufficient Session Expiration
Oct 27, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-29844 HIGH
IBM Jazz Team Server - Authenticated Server-Side Request Forgery
Oct 27, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-29786 MEDIUM
IBM Engineering Lifecycle Optimization - Authenticated Cleartext Storage of Sensitive Information
Oct 27, 2021
CVSS 6.5
EPSS 0.01
CVE-2021-29774 HIGH
IBM Jazz Team Server - Privilege Escalation
Oct 27, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-29713 MEDIUM
IBM Engineering Lifecycle Optimization - Cross-Site Scripting
Oct 27, 2021
CVSS 5.4
EPSS 0.00
CVE-2021-29673 MEDIUM
IBM Jazz Team Server - Stored Cross-Site Scripting
Oct 27, 2021
CVSS 5.4
EPSS 0.00
CVE-2021-20526 MEDIUM
IBM Planning Analytics 2.0 - Info Disclosure
Oct 27, 2021
CVSS 5.3
EPSS 0.01
CVE-2021-29835 MEDIUM
IBM Business Automation Workflow 18.0, 19.0, 20.0, 21.0 - Cross-Site Scripting
Oct 22, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-29883 MEDIUM
IBM Transformation Extender Advanced 9.0.0.0-9.0.2.4 - Missing Encryption of Sensitive Data in Session Cookies
Oct 21, 2021
CVSS 4.3
EPSS 0.01
CVE-2021-29873 HIGH
IBM Spectrum Virtualize 7.8.0.0-8.3.x - DoS and Info Disclosure via Restricted Shell Escape
Oct 21, 2021
CVSS 8.1
EPSS 0.01
CVE-2021-38896 MEDIUM
IBM QRadar Advisor 2.5.0-2.6.1 - Stored Cross-Site Scripting
Oct 20, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-38911 MEDIUM
IBM Security Risk Manager on CP4S <1.7.0.0 - Info Disclosure
Oct 19, 2021
CVSS 4.9
EPSS 0.01
CVE-2021-29912 MEDIUM
IBM Security Risk Manager on CP4S 1.7.0.0 - Stored Cross-Site Scripting
Oct 19, 2021
CVSS 5.4
EPSS 0.00
CVE-2021-29878 MEDIUM
IBM Business Automation Workflow 18.0, 19.0, 20.0, 21.0 - Cross-Site Scripting
Oct 18, 2021
CVSS 5.4
EPSS 0.01