安全情报专区 162+

精选漏洞公告、利用分析、安全博客、GHSA Advisory 等情报来源，已自动清洗 + 中英双语呈现，持续更新。

筛选

仅 KEV

已验证 PoC

清除筛选

Medium

IBM API Connect 访问控制漏洞 (CVE-2023-28522) 修复指南

CVE-2023-28522 · www.ibm.com · 2025-11-11

IBM API Connect V10.0.0.0 · IBM API Connect V10.0.1.4

Critical

IBM Cognos Analytics 受PgJDBC漏洞影响(CVE-2022-31197等)

CVE-2022-31197 · www.ibm.com · 2025-11-11

IBM Cognos Analytics Certified Containers 12.1.0

Medium

IBM Sterling B2B Integrator 访问控制不当漏洞 (CVE-2022-40231)

CVE-2022-40231 · www.ibm.com · 2025-11-11

IBM Sterling B2B Integrator 6.0.0.0 - 6.0.3.7 · IBM Sterling B2B Integrator 6.1.0.0 - 6.1.2.0

Medium

IBM Jazz Reporting Service 信息泄露漏洞 (CVE-2018-1639)

CVE-2018-1639 · www.ibm.com · 2025-11-11

Jazz Reporting Service 5.0 · Jazz Reporting Service 5.0.1 …

Medium

IBM Db2 信息泄露漏洞 (CVE-2022-43930) 及修复指南

CVE-2022-43930 · www.ibm.com · 2025-11-10

IBM Db2 V10.5 Windows · IBM Db2 V11.1 Windows …

Medium

IBM Sterling B2B Integrator XSS漏洞(CVE-2025-36135)公告

CVE-2025-36135 · www.ibm.com · 2025-11-09

IBM Sterling B2B Integrator 6.0.0.0 - 6.1.2.7_1 · IBM Sterling B2B Integrator 6.2.0.0 - 6.2.0.5 …

Medium

IBM Db2 资源释放不当导致DoS漏洞 (CVE-2025-36006)

CVE-2025-36006 · www.ibm.com · 2025-11-09

IBM Db2 10.5.0 - 10.5.11 · IBM Db2 11.1.0 - 11.1.4.7 …

Medium

IBM Business Automation Workflow XSS漏洞(CVE-2025-36054)公告

CVE-2025-36054 · www.ibm.com · 2025-11-09

IBM Business Automation Workflow containers V25.0.0 · IBM Business Automation Workflow containers V25.0.0-IF001 …

High

IBM Guardium Key Lifecycle Manager 多漏洞公告 (CVE-2023-25689等)

www.ibm.com · 2025-11-09

IBM Security Guardium Key Lifecycle Manager 3.0 · IBM Security Guardium Key Lifecycle Manager 3.0.1 …

High

IBM Spectrum Symphony XXE漏洞(CVE-2018-1702)及修复指南

CVE-2018-1702 · www.ibm.com · 2025-11-09

IBM Platform Symphony 7.1 Fix Pack 1 · IBM Platform Symphony 7.1.1 …

Medium

IBM Jazz Foundation XSS漏洞(CVE-2018-1762)及修复指南

CVE-2018-1762 · www.ibm.com · 2025-11-09

Rational Collaborative Lifecycle Management 5.0 - 6.0.6 · Rational Quality Manager 5.0 - 6.0.6 …

Medium

IBM Maximo Asset Management CVE-2017-1208 XSS漏洞公告及修复指南

CVE-2017-1208 · www.ibm.com · 2025-11-09

Maximo Asset Management 7.6 · Maximo Asset Management 7.5 …

High

IBM Spectrum Protect 本地权限提升漏洞 (CVE-2021-20532)

CVE-2021-20532 · www.ibm.com · 2025-11-08

IBM Spectrum Protect Backup-Archive Client 8.1.0.0-8.1.11.0 · IBM Spectrum Protect for Virtual Environments: Data Protection for VMware 8.1.0.0-8.1.11.0 …

Medium

IBM BPM Process Admin Console 持续型XSS漏洞 (CVE-2017-1530)

CVE-2017-1530 · www.ibm.com · 2025-11-08

IBM Business Process Manager V7.5.0.0 through V7.5.1.2 · IBM Business Process Manager V8.0.0.0 through V8.0.1.3 …

Medium

IBM Case Manager/Business Automation Workflow 跨站脚本漏洞 (CVE-2020-4768)

CVE-2020-4768 · www.ibm.com · 2025-11-08

IBM Business Automation Workflow V18.0.0.x · IBM Business Automation Workflow V19.0.0.x …

Critical

IBM SDK Java 9个CVE漏洞公告（含RCE/信息泄露）

www.ibm.com · 2025-11-08

IBM SDK, Java Technology Edition

Medium

IBM Jazz Reporting Service (LQE) XSS漏洞 (CVE-2018-1918) 安全公告

CVE-2018-1918 · www.ibm.com · 2025-11-08

Jazz Reporting Service 6.0.3 · Jazz Reporting Service 6.0.4 …

Medium

IBM Tivoli Netcool/OMNibus GUI XSS漏洞(CVE-2020-4196)公告

CVE-2020-4196 · www.ibm.com · 2025-11-08

IBM Tivoli Netcool/OMNibus GUI 8.1.x

Low

IBM MQ CVE-2017-1236 认证用户拒绝服务漏洞

CVE-2017-1236 · www.ibm.com · 2025-11-08

IBM MQ 9.0.2 Continuous Delivery · IBM MQ Appliance 9.0.x Continuous Delivery …

Medium

IBM DataPower Gateway HSTS配置不当导致中间人攻击(CVE-2018-1663)

CVE-2018-1663 · www.ibm.com · 2025-11-08

IBM DataPower Gateway 7.7.0.0-7.7.1.3 · IBM DataPower Gateway 7.6.0.0-7.6.0.9 …

每篇文章经过自动 HTML→Markdown 清洗 + LLM 去噪 + 中英双语翻译。原始链接保留在文章末尾。

想看哪个安全博客 / 公告源？邮件告诉我们，每周新接 1-2 个。

目标达成 感谢每一位支持者 — 我们达成了 100% 目标！

安全情报专区 162+

目标达成感谢每一位支持者 — 我们达成了 100% 目标！