Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4615

Browse all 4615 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by IBM:DB2 for Linux, UNIX and WindowsInfoSphere Information ServerSterling B2B IntegratorWebSphere Application ServerSecurity GuardiumQRadar SIEMCognos AnalyticsMQMaximo Asset ManagementAPI ConnectRational Quality ManagerRational Collaborative Lifecycle ManagementSecurity Key Lifecycle ManagerAIXiSpectrum Protect PlusSpectrum ScaleRobotic Process AutomationUrbanCode DeployCognos ControllerAspera FaspexSterling File GatewaySecurity Identity Governance and IntelligenceRational DOORS Next GenerationCloud Pak for SecurityConcertCloud Pak SystemFinancial Transaction ManagerContent NavigatorPlanning Analytics Local
CVE IDTitleCVSSSeverityPublished
CVE-2023-27870 IBM Spectrum Virtualize information disclosure — Spectrum VirtualizeCWE-200 5.9 Medium2023-05-11
CVE-2023-27554 IBM WebSphere Application Server XML external entity injection — WebSphere Application ServerCWE-611 6.3 Medium2023-05-11
CVE-2022-43877 IBM UrbanCode Deploy (UCD) information disclosure — UrbanCode Deploy 5.1 Medium2023-05-06
CVE-2023-24957 IBM Business Automation Workflow cross-site scripting — Business Automation WorkflowCWE-79 5.4 Medium2023-05-06
CVE-2022-22313 IBM QRadar Data Synchronization App information disclosure — QRadar Data Synchronization AppCWE-327 4.4 Medium2023-05-06
CVE-2022-43866 IBM Maximo Asset Management cross-site scripting — Maximo Asset ManagementCWE-79 5.4 Medium2023-05-05
CVE-2020-4914 IBM Cloud Pak System Software Suite session fixation — Cloud Pak System Software SuiteCWE-613 4.2 Medium2023-05-05
CVE-2023-26285 IBM MQ denial of service — MQCWE-119 5.9 Medium2023-05-05
CVE-2023-22874 IBM MQ denial of service — MQ 5.5 Medium2023-05-05
CVE-2022-43919 IBM MQ denial of service — MQCWE-20 5.3 Medium2023-05-05
CVE-2023-30434 IBM Storage Scale denial of service — Elastic Storage SystemCWE-20 6.2 Medium2023-05-05
CVE-2022-38707 IBM Cognos Command Center information disclosure — Cognos Command CenterCWE-613 4.0 Medium2023-05-05
CVE-2023-24958 IBM TS7700 Management Interface command injection — Virtualization Engine TS7700CWE-78 8.8 High2023-05-04
CVE-2023-23470 IBM i privilege escalation — i 6.4 Medium2023-05-04
CVE-2022-39161 IBM WebSphere Application Server information disclosure — WebSphere Application ServerCWE-295 4.8 Medium2023-05-03
CVE-2023-30441 IBM Java information disclosure — JavaCWE-327 7.5 High2023-04-29
CVE-2022-43871 IBM Financial Transaction Manager for SWIFT Services cross-site scripting — Financial Transaction Manager for SWIFT ServicesCWE-79 4.6 Medium2023-04-29
CVE-2022-41736 IBM Spectrum Scale Container Native Storage Access privilege escalation — Spectrum Scale Container Native Storage Access 8.4 High2023-04-29
CVE-2023-26022 IBM Db2 denial of service — DB2 for Linux, UNIX and WindowsCWE-20 5.9 Medium2023-04-28
CVE-2023-26021 IBM Db2 denial of service — DB2 for Linux, UNIX and WindowsCWE-20 7.5 High2023-04-28
CVE-2023-27555 IBM Db2 denial of service — DB2 for Linux, UNIX and WindowsCWE-20 5.1 Medium2023-04-28
CVE-2023-25930 IBM Db2 denial of service — DB2 for Linux, UNIX and WindowsCWE-20 5.9 Medium2023-04-28
CVE-2023-27864 IBM Maximo Asset Management HTML injection — Maximo Asset Management 5.4 Medium2023-04-28
CVE-2023-28528 IBM AIX command execution — AIXCWE-78 8.4 High2023-04-28
CVE-2023-27557 IBM Safter Payments information disclosure — Safer PaymentsCWE-327 5.9 Medium2023-04-28
CVE-2020-4729 IBM Safer Payments denial of service — Safer Payments 5.3 Medium2023-04-28
CVE-2023-27556 IBM Safer Payments denial of service — Safer PaymentsCWE-770 6.5 Medium2023-04-28
CVE-2023-27860 IBM Maximo Asset Management information disclosure — Maximo Asset ManagementCWE-209 5.3 Medium2023-04-27
CVE-2023-24966 IBM WebSphere Application Server cross-site scripting — WebSphere Application ServerCWE-79 6.1 Medium2023-04-27
CVE-2023-30444 IBM Watson Machine Learning on Cloud Pak for Data server-side request forgery — Watson Machine Learning on Cloud Pak for DataCWE-918 7.1 High2023-04-27

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.