Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4615

Browse all 4615 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by IBM:DB2 for Linux, UNIX and WindowsInfoSphere Information ServerSterling B2B IntegratorWebSphere Application ServerSecurity GuardiumQRadar SIEMCognos AnalyticsMQMaximo Asset ManagementAPI ConnectRational Quality ManagerRational Collaborative Lifecycle ManagementSecurity Key Lifecycle ManagerAIXiSpectrum Protect PlusSpectrum ScaleRobotic Process AutomationUrbanCode DeployCognos ControllerAspera FaspexSterling File GatewaySecurity Identity Governance and IntelligenceRational DOORS Next GenerationCloud Pak for SecurityConcertCloud Pak SystemFinancial Transaction ManagerContent NavigatorPlanning Analytics Local
CVE IDTitleCVSSSeverityPublished
CVE-2022-43855 IBM SPSS Statistics denial of service — SPSS StatisticsCWE-399 6.2 Medium2024-03-08
CVE-2023-46169 IBM DS8900F file manipulation — DS8900FCWE-41 6.5 Medium2024-03-07
CVE-2023-46172 IBM DS8900F security bypass — DS8900FCWE-287 5.6 Medium2024-03-07
CVE-2023-46170 IBM DS8900F information disclosure — DS8900FCWE-204 6.5 Medium2024-03-07
CVE-2023-46171 IBM DS8900F information disclosure — DS8900FCWE-532 4.3 Medium2024-03-07
CVE-2022-22399 IBM Aspera Faspex HTTP header injection — Aspera FaspexCWE-644 5.4 Medium2024-03-05
CVE-2023-25681 IBM Spectrum Virtualize security bypass — Spectrum VirtualizeCWE-308 5.3 Medium2024-03-05
CVE-2023-26282 IBM Watson CP4D Data Stores file modificiation — Watson CP4D Data StoresCWE-73 4.2 Medium2024-03-05
CVE-2023-35899 IBM Cloud Pak for Automation CSV injection — Cloud Pak for AutomationCWE-1236 7.0 High2024-03-05
CVE-2024-22352 IBM InfoSphere Information Server information disclosure — InfoSphere Information ServerCWE-532 6.5 Medium2024-03-05
CVE-2023-32331 IBM Connect:Express for UNIX denial of service — Sterling Connect:Express for UNIXCWE-119 7.5 High2024-03-04
CVE-2023-38360 IBM CICS TX cross-site scripting — CICS TX AdvancedCWE-79 6.1 Medium2024-03-04
CVE-2023-38362 IBM CICS TX information disclosure — CICS TX AdvancedCWE-204 5.3 Medium2024-03-04
CVE-2022-43890 IBM Security Verify Privilege On-Premises information disclosure — Security Verify Privilege On-PremisesCWE-200 5.3 Medium2024-03-04
CVE-2023-28512 IBM Watson CP4D Data Stores improper input validation — Watson CP4D Data StoresCWE-472 5.9 Medium2024-03-03
CVE-2023-27291 IBM Watson CP4D Data Stores information disclosure — Watson CP4D Data StoresCWE-319 4.5 Medium2024-03-03
CVE-2022-43880 IBM QRadar WinCollect Agent — QRadar WinCollect Agent CWE-400 4.4 Medium2024-03-03
CVE-2024-22355 IBM QRadar Suite information dislosure — QRadar Suite ProductsCWE-521 5.9 Medium2024-03-03
CVE-2023-47742 IBM QRadar Suite information dislosure — QRadar Suite ProductsCWE-295 5.9 Medium2024-03-03
CVE-2023-43054 IBM Engineering Test Management cross-site scripting — Engineering Test ManagementCWE-79 6.4 Medium2024-03-03
CVE-2023-47745 IBM MQ Container information disclosure — MQ OperatorCWE-319 6.2 Medium2024-03-03
CVE-2024-27255 IBM MQ Container information disclosure — MQ OperatorCWE-327 5.9 Medium2024-03-03
CVE-2024-25016 IBM MQ denial of service — MQCWE-20 7.5 High2024-03-03
CVE-2023-50312 IBM WebSphere Application Server Liberty information disclosure — WebSphere Application Server LibertyCWE-327 5.3 Medium2024-03-01
CVE-2023-38366 IBM FileNet Content Manager directory traversal — Filenet Content ManagerCWE-22 5.3 Medium2024-03-01
CVE-2023-47716 IBM FileNet Content Manager privilege escalation — Filenet Content ManagerCWE-863 6.3 Medium2024-03-01
CVE-2023-50324 IBM Cognos Command Center information disclosure — Cognos Command CenterCWE-200 5.3 Medium2024-03-01
CVE-2023-28949 IBM Engineering Requirements Management cross-site request forgery — Engineering Requirements ManagementCWE-352 6.5 Medium2024-03-01
CVE-2023-50305 IBM Engineering Requirements Management information disclosure — Engineering Requirements ManagementCWE-521 5.1 Medium2024-03-01
CVE-2023-28525 IBM Engineering Requirements Management cross-site scripting — Engineering Requirements ManagementCWE-79 4.8 Medium2024-03-01

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.