Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4615

Browse all 4615 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by IBM:DB2 for Linux, UNIX and WindowsInfoSphere Information ServerSterling B2B IntegratorWebSphere Application ServerSecurity GuardiumQRadar SIEMCognos AnalyticsMQMaximo Asset ManagementAPI ConnectRational Quality ManagerRational Collaborative Lifecycle ManagementSecurity Key Lifecycle ManagerAIXiSpectrum Protect PlusSpectrum ScaleRobotic Process AutomationUrbanCode DeployCognos ControllerAspera FaspexSterling File GatewaySecurity Identity Governance and IntelligenceRational DOORS Next GenerationCloud Pak for SecurityConcertCloud Pak SystemFinancial Transaction ManagerContent NavigatorPlanning Analytics Local
CVE IDTitleCVSSSeverityPublished
CVE-2023-29255 IBM DB2 for Linux, UNIX and Windows denial of service — DB2 for Linux, UNIX and WindowsCWE-20 7.5 High2023-04-27
CVE-2023-27559 IBM Db2 denial of service — Db2 for Linux, UNIX and WindowsCWE-20 5.3 Medium2023-04-26
CVE-2023-29257 IBM Db2 code execution — Db2 for Linux, UNIX and Windows 7.2 High2023-04-26
CVE-2023-26286 IBM AIX privilege escalation — AIX 8.4 High2023-04-26
CVE-2022-36769 IBM Cloud Pak for Data file upload — Cloud Pak for DataCWE-77 7.2 High2023-04-26
CVE-2022-41739 IBM Spectrum Scale privilege escalation — Spectrum Scale Container Native Storage Access 7.9 High2023-04-26
CVE-2022-43928 IBM Db2 Mirror for i information disclosure — Db2 Mirror for i 4.9 Medium2023-04-07
CVE-2022-43914 IBM TRIRIGA Application Platform cross-site scripting — TRIRIGA Application PlatformCWE-79 4.6 Medium2023-04-07
CVE-2023-27876 IBM TRIRIGA Application Platform XML external entity injection — TRIRIGA Application PlatformCWE-611 7.1 High2023-04-07
CVE-2022-33959 IBM Sterling Order Management privilege escalation — Sterling Order Management 5.4 Medium2023-04-07
CVE-2022-34333 IBM Sterling Order Management information disclosure — Sterling Order ManagementCWE-521 5.9 Medium2023-04-07
CVE-2023-27286 IBM Aspera code execution — AsperaCWE-119 8.4 High2023-03-28
CVE-2023-27284 IBM Aspera code execution — AsperaCWE-119 8.4 High2023-03-28
CVE-2023-26283 IBM WebSphere Application Server cross-site scripting — WebSphere Application ServerCWE-79 5.4 Medium2023-03-22
CVE-2022-43863 IBM QRadar SIEM privilege escalation — QRadar SIEMCWE-20 6.7 Medium2023-03-22
CVE-2023-25684 IBM Security Key Lifecycle Manager SQL injection — Security Key Lifecycle ManagerCWE-89 6.5 Medium2023-03-21
CVE-2023-25686 IBM Security Key Lifecycle Manager information disclosure — Security Key Lifecycle Manager 6.2 Medium2023-03-21
CVE-2023-25923 IBM Security Key Lifecycle Manager denial of service — Security Key Lifecycle ManagerCWE-863 2.7 Low2023-03-21
CVE-2023-25688 IBM Security Key Lifecycle Manager information disclosure — Security Key Lifecycle ManagerCWE-22 4.3 Medium2023-03-21
CVE-2023-25687 IBM Security Key Lifecycle Manager information disclosure — Security Key Lifecycle ManagerCWE-209 4.3 Medium2023-03-21
CVE-2023-25924 IBM Security Key Lifecycle Manager improper authorization — Security Key Lifecycle ManagerCWE-863 5.4 Medium2023-03-21
CVE-2023-25689 IBM Security Key Lifecycle Manager information disclosure — Security Key Lifecycle ManagerCWE-22 2.7 Low2023-03-21
CVE-2023-27873 IBM Aspera Faspex information disclosure — Aspera Faspex 6.5 Medium2023-03-21
CVE-2023-27874 IBM Aspera Faspex XML external entity injection — Aspera FaspexCWE-611 9.9 Critical2023-03-21
CVE-2023-27871 IBM Aspera Faspex information disclosure — Aspera Faspex 7.5 High2023-03-21
CVE-2023-27875 IBM Aspera Faspex improper access controls — Aspera Faspex 7.5 High2023-03-16
CVE-2023-22591 IBM Robotic Process Automation session fixation — Robotic Process AutomationCWE-613 3.9 Low2023-03-15
CVE-2022-46773 IBM Robotic Process Automation security bypass — Robotic Process AutomationCWE-287 4.3 Medium2023-03-15
CVE-2023-25680 IBM Robotic Process Automation information disclosure — Robotic Process AutomationCWE-200 4.2 Medium2023-03-15
CVE-2020-4556 IBM Financial Transaction Manager information disclosure — Financial Transaction Manager 4.0 Medium2023-03-15

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.