Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4615

Browse all 4615 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by IBM:DB2 for Linux, UNIX and WindowsInfoSphere Information ServerSterling B2B IntegratorWebSphere Application ServerSecurity GuardiumQRadar SIEMCognos AnalyticsMQMaximo Asset ManagementAPI ConnectRational Quality ManagerRational Collaborative Lifecycle ManagementSecurity Key Lifecycle ManagerAIXiSpectrum Protect PlusSpectrum ScaleRobotic Process AutomationUrbanCode DeployCognos ControllerAspera FaspexSterling File GatewaySecurity Identity Governance and IntelligenceRational DOORS Next GenerationCloud Pak for SecurityConcertCloud Pak SystemFinancial Transaction ManagerContent NavigatorPlanning Analytics Local
CVE IDTitleCVSSSeverityPublished
CVE-2024-22354 IBM WebSphere Application Server XML external entity injection — WebSphere Application ServerCWE-611 7.0 High2024-04-17
CVE-2024-31887 IBM Security Verify Privilege information disclosure — Security Verify PrivilegeCWE-497 7.5 High2024-04-16
CVE-2024-22358 IBM UrbanCode Deploy session fixation — UrbanCode DeployCWE-613 6.3 Medium2024-04-12
CVE-2024-22339 IBM UrbanCode Deploy information disclosure — UrbanCode DeployCWE-532 4.3 Medium2024-04-12
CVE-2024-22334 IBM UrbanCode Deploy improper privilege control — UrbanCode DeployCWE-732 4.4 Medium2024-04-12
CVE-2024-22359 IBM UrbanCode Deploy cross-site scripting — UrbanCode DeployCWE-79 6.1 Medium2024-04-12
CVE-2023-47714 IBM Sterling File Gateway cross-site scripting — Sterling File GatewayCWE-79 4.8 Medium2024-04-12
CVE-2024-27261 IBM Storage Defender - Resiliency Service privilege escalation — Storage DefenderCWE-749 6.4 Medium2024-04-12
CVE-2023-45186 IBM Sterling B2B Integrator cross-site scripting — Sterling B2B IntegratorCWE-79 4.8 Medium2024-04-12
CVE-2023-50307 IBM Sterling B2B Integrator cross-site scripting — Sterling B2B IntegratorCWE-79 5.4 Medium2024-04-12
CVE-2024-22357 IBM Sterling B2B Integrator cross-site scripting — Sterling B2B IntegratorCWE-79 5.4 Medium2024-04-12
CVE-2023-50949 IBM QRadar improper certificate validation — QRadar SIEMCWE-295 5.9 Medium2024-04-11
CVE-2024-31874 IBM Security Verify Access Appliance denial of service — Security Verify Access ApplianceCWE-457 6.2 Medium2024-04-10
CVE-2024-31873 IBM Security Verify Access Appliance information disclosure — Security Verify Access ApplianceCWE-798 7.5 High2024-04-10
CVE-2024-31871 IBM Security Verify Access Appliance improper certificate validation — Security Verify Access ApplianceCWE-295 7.5 High2024-04-10
CVE-2024-31872 IBM Security Verify Access Appliance missing certificate validation — Security Verify Access ApplianceCWE-295 7.5 High2024-04-10
CVE-2024-25029 IBM Personal Communications code execution — Personal CommunicationsCWE-119 9.0 Critical2024-04-06
CVE-2024-22328 IBM Maximo Application Suite information disclosure — Maximo Application SuiteCWE-22 7.5 High2024-04-06
CVE-2024-28787 IBM Security Verify Access information disclosure — Security Verify Access ContainerCWE-650 8.7 High2024-04-04
CVE-2024-27268 IBM WebSphere Application Server Liberty denial of service — WebSphere Application Server LibertyCWE-770 5.9 Medium2024-04-04
CVE-2024-22360 IBM Db2 for Linux, UNIX and Windows denial of service — Db2 for Linux, UNIX and WindowsCWE-20 5.3 Medium2024-04-03
CVE-2023-52296 IBM Db2 for Linux, UNIX and Windows denial of service — Db2 for Linux, UNIX and WindowsCWE-20 5.3 Medium2024-04-03
CVE-2023-38729 IBM Db2 information disclosure — Db2 for Linux, UNIX and WindowsCWE-200 6.8 Medium2024-04-03
CVE-2024-27254 IBM Db2 for Linux, UNIX and Windows denial of service — Db2 for Linux, UNIX and WindowsCWE-20 5.3 Medium2024-04-03
CVE-2024-25046 IBM Db2 for Linux, UNIX and Windows denial of service — Db2 for Linux, UNIX and WindowsCWE-20 5.3 Medium2024-04-03
CVE-2024-25030 IBM DB2 日志信息泄露漏洞 — Db2 for Linux, UNIX and WindowsCWE-532 6.2 Medium2024-04-03
CVE-2024-28782 IBM QRadar Suite Software information disclosure — QRadar Suite SoftwareCWE-256 6.3 Medium2024-04-03
CVE-2023-50313 IBM WebSphere Application Server information disclosure — WebSphere Application ServerCWE-327 5.3 Medium2024-04-02
CVE-2023-50311 IBM CICS Transaction Gateway for Multiplatforms information disclosure — CICS Transaction Gateway for MultiplatformsCWE-522 3.1 Low2024-03-31
CVE-2023-50959 IBM Cloud Pak for Business Automation information disclosure — Cloud Pak for Business AutomationCWE-497 5.3 Medium2024-03-31

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.