Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4615

Browse all 4615 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by IBM:DB2 for Linux, UNIX and WindowsInfoSphere Information ServerSterling B2B IntegratorWebSphere Application ServerSecurity GuardiumQRadar SIEMCognos AnalyticsMQMaximo Asset ManagementAPI ConnectRational Quality ManagerRational Collaborative Lifecycle ManagementSecurity Key Lifecycle ManagerAIXiSpectrum Protect PlusSpectrum ScaleRobotic Process AutomationUrbanCode DeployCognos ControllerAspera FaspexSterling File GatewaySecurity Identity Governance and IntelligenceRational DOORS Next GenerationCloud Pak for SecurityConcertCloud Pak SystemFinancial Transaction ManagerContent NavigatorPlanning Analytics Local
CVE IDTitleCVSSSeverityPublished
CVE-2023-27283 IBM Aspera Orchestrator information disclosure — Aspera OrchestratorCWE-204 5.3 Medium2024-05-04
CVE-2023-40695 IBM Cognos Controller session fixation — Cognos ControllerCWE-613 6.3 Medium2024-05-03
CVE-2021-20451 IBM Cognos Controller SQL injection — Cognos ControllerCWE-89 6.0 Medium2024-05-03
CVE-2022-22364 IBM Cognos Controller security bypass — Cognos ControllerCWE-350 5.3 Medium2024-05-03
CVE-2023-28952 IBM Cognos Controller log injection — Cognos ControllerCWE-117 5.3 Medium2024-05-03
CVE-2023-38724 IBM Cognos Controller SQL injection — Cognos ControllerCWE-89 6.3 Medium2024-05-03
CVE-2023-40696 IBM Cognos Controller information disclosure — Cognos ControllerCWE-327 5.9 Medium2024-05-03
CVE-2021-20556 IBM Cognos Controller information disclosure — Cognos ControllerCWE-204 5.3 Medium2024-05-03
CVE-2023-23474 IBM Cognos Controller information disclosure — Cognos ControllerCWE-209 3.7 Low2024-05-03
CVE-2021-20450 IBM Cognos Controller information disclosure — Cognos Controller 4.3 Medium2024-05-03
CVE-2020-4874 IBM Cognos Controller information disclosure — Cognos ControllerCWE-327 5.9 Medium2024-05-03
CVE-2023-37407 IBM Aspera Orchestrator command execution — Aspera OrchestratorCWE-78 8.8 High2024-05-03
CVE-2024-25047 IBM Cognos Analytics log injection — Cognos AnalyticsCWE-117 8.6 High2024-05-02
CVE-2023-47727 IBM QRadar Suite Software file manipulation — Cloud Pak for SecurityCWE-1287 4.3 Medium2024-05-02
CVE-2024-28764 IBM WebSphere Automation CSV injection — WebSphere AutomationCWE-1236 6.5 Medium2024-05-01
CVE-2024-25015 IBM MQ denial of service — MQCWE-406 7.5 High2024-05-01
CVE-2024-28775 IBM WebSphere Automation cross-site scripting — WebSphere AutomationCWE-79 4.4 Medium2024-05-01
CVE-2022-38386 IBM Cloud Pak for Security information disclosure — Cloud Pak for SecurityCWE-1275 5.9 Medium2024-05-01
CVE-2023-38002 IBM Storage Scale session fixation — Storage ScaleCWE-384 5.0 Medium2024-04-30
CVE-2024-25050 IBM i privilege escalation — iCWE-427 8.4 High2024-04-28
CVE-2024-25048 IBM MQ code execution — MQ ApplianceCWE-122 7.5 High2024-04-27
CVE-2024-25026 IBM WebSphere Application Server denial of service — WebSphere Application ServerCWE-770 5.9 Medium2024-04-25
CVE-2023-47731 IBM QRadar Suite Software cross-site scripting — QRadar Suite SoftwareCWE-79 5.4 Medium2024-04-23
CVE-2022-40745 IBM Aspera Faspex information disclosure — Aspera FaspexCWE-326 5.5 Medium2024-04-19
CVE-2023-37397 IBM Aspera Faspex data manipulation — Aspera FaspexCWE-326 3.6 Low2024-04-19
CVE-2023-27279 IBM Aspera Faspex denial of service — Aspera FaspexCWE-799 6.5 Medium2024-04-19
CVE-2023-37396 IBM Aspera Faspex information disclosure — Aspera FaspexCWE-327 2.5 Low2024-04-19
CVE-2023-22869 IBM Aspera Faspex information disclosure — Aspera FaspexCWE-532 5.5 Medium2024-04-19
CVE-2023-37400 IBM Aspera Faspex privilege escalation — Aspera FaspexCWE-522 7.8 High2024-04-19
CVE-2024-22329 IBM WebSphere Application Server server-side request forgery — WebSphere Application ServerCWE-918 4.3 Medium2024-04-17

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.