| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-25046 | IBM InfoSphere Information Server information disclosure | IBM | InfoSphere Information Server | Low | 3.7 | 2025-04-23 22:24:43 | Deep Dive |
| CVE-2025-25045 | IBM InfoSphere Information Server information disclosure | IBM | InfoSphere Information Server | Medium | 4.3 | 2025-04-23 22:23:10 | Deep Dive |
| CVE-2024-22351 | IBM InfoSphere Information Server session fixation | IBM | InfoSphere Information Server | Medium | 6.3 | 2025-04-23 22:15:49 | Deep Dive |
| CVE-2025-27907 | IBM WebSphere Application Server server-side request forgery | IBM | WebSphere Application Server | Medium | 4.1 | 2025-04-22 16:20:22 | Deep Dive |
| CVE-2025-1951 | IBM Hardware Management Console - Power Systems command execution | IBM | Hardware Management Console - Power Systems | High | 8.4 | 2025-04-22 14:48:09 | Deep Dive |
| CVE-2025-1950 | IBM Hardware Management Console - Power Systems command execution | IBM | Hardware Management Console - Power Systems | Critical | 9.3 | 2025-04-22 14:46:52 | Deep Dive |
| CVE-2025-2987 | IBM Maximo Asset Management server-side request forgery | IBM | Maximo Asset Management | Low | 3.8 | 2025-04-21 23:24:31 | Deep Dive |
| CVE-2025-2950 | IBM i improper HTTP header neutralization | IBM | i | Medium | 5.4 | 2025-04-18 14:50:21 | Deep Dive |
| CVE-2024-45651 | IBM Sterling Connect:Direct Web Services session fixation | IBM | Sterling Connect:Direct Web Services | Medium | 6.3 | 2025-04-18 11:04:56 | Deep Dive |
| CVE-2024-49808 | IBM Sterling Connect:Direct Web Services improper authorization | IBM | Sterling Connect:Direct Web Services | Medium | 6.3 | 2025-04-18 11:03:59 | Deep Dive |
| CVE-2025-2947 | IBM i privilege escalation | IBM | i | High | 7.2 | 2025-04-17 17:10:53 | Deep Dive |
| CVE-2024-22314 | IBM Storage Defender - Resiliency Service information disclosure | IBM | Storage Defender - Resiliency Service | Medium | 5.9 | 2025-04-16 16:17:55 | Deep Dive |
| CVE-2022-43850 | IBM Aspera Console cross-site scripting | IBM | Aspera Console | Medium | 5.4 | 2025-04-14 20:45:00 | Deep Dive |
| CVE-2022-43840 | IBM Aspera Console XPath injection | IBM | Aspera Console | Medium | 4.3 | 2025-04-14 20:43:29 | Deep Dive |
| CVE-2022-43851 | IBM Aspera Console information disclosure | IBM | Aspera Console | Medium | 5.9 | 2025-04-14 20:39:57 | Deep Dive |
| CVE-2023-27272 | IBM Aspera Console weak password requirements | IBM | Aspera Console | Low | 3.1 | 2025-04-14 20:38:21 | Deep Dive |
| CVE-2022-43852 | IBM Aspera Console information disclosure | IBM | Aspera Console | Medium | 5.3 | 2025-04-14 20:33:59 | Deep Dive |
| CVE-2022-43847 | IBM Aspera Console HTTP header injection | IBM | Aspera Console | Medium | 5.4 | 2025-04-14 20:22:02 | Deep Dive |
| CVE-2024-49825 | IBM Robotic Process Automation session fixation | IBM | Robotic Process Automation | Medium | 6.3 | 2025-04-14 14:53:41 | Deep Dive |
| CVE-2025-3423 | IBM Aspera Faspex 5 cross-site scripting | IBM | Aspera Faspex | Medium | 5.4 | 2025-04-13 11:56:15 | Deep Dive |