Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4615

Browse all 4615 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by IBM:DB2 for Linux, UNIX and WindowsInfoSphere Information ServerSterling B2B IntegratorWebSphere Application ServerSecurity GuardiumQRadar SIEMCognos AnalyticsMQMaximo Asset ManagementAPI ConnectRational Quality ManagerRational Collaborative Lifecycle ManagementSecurity Key Lifecycle ManagerAIXiSpectrum Protect PlusSpectrum ScaleRobotic Process AutomationUrbanCode DeployCognos ControllerAspera FaspexSterling File GatewaySecurity Identity Governance and IntelligenceRational DOORS Next GenerationCloud Pak for SecurityConcertCloud Pak SystemFinancial Transaction ManagerContent NavigatorPlanning Analytics Local
CVE IDTitleCVSSSeverityPublished
CVE-2025-36039 IBM Aspera Faspex bypass security — Aspera FaspexCWE-602 6.5 Medium2025-07-30
CVE-2024-49828 IBM Db2 for Linux, UNIX and Windows denial of service — Db2CWE-121 6.5 Medium2025-07-29
CVE-2024-51473 IBM Db2 for Linux, UNIX and Windows denial of service — Db2CWE-121 6.5 Medium2025-07-29
CVE-2024-52894 IBM Db2 for Linux, UNIX and Windows denial of service — Db2CWE-121 4.9 Medium2025-07-29
CVE-2025-33114 IBM Db2 for Linux denial of service — Db2CWE-943 5.3 Medium2025-07-29
CVE-2025-33092 IBM Db2 for Linux code execution — Db2CWE-121 7.8 High2025-07-29
CVE-2025-36071 IBM Db2 denial of service — IBM Db2CWE-772 6.5 Medium2025-07-29
CVE-2025-36010 IBM Db2 for Linux denial of service — Db2CWE-833 6.5 Medium2025-07-29
CVE-2025-2533 IBM Db2 for Linux denial of service — Db2CWE-789 5.3 Medium2025-07-29
CVE-2024-49343 IBM Informix Dynamic Server HTML injection — Informix Dynamic ServerCWE-80 5.4 Medium2025-07-28
CVE-2024-49342 IBM Informix Dynamic Server information disclosure — Informix Dynamic ServerCWE-307 7.5 High2025-07-28
CVE-2025-33109 IBM i privilege escalation — iCWE-250 7.5 High2025-07-24
CVE-2025-33013 IBM MQ Operator information disclosure — MQ OperatorCWE-244 6.2 Medium2025-07-24
CVE-2025-36005 IBM MQ Operator information disclosure — MQ OperatorCWE-295 5.9 Medium2025-07-24
CVE-2025-33077 IBM Engineering Systems Design Rhapsody code execution — Engineering Systems Design RhapsodyCWE-119 8.8 High2025-07-23
CVE-2025-33076 IBM Engineering Systems Design Rhapsody code execution — Engineering Systems Design RhapsodyCWE-119 8.8 High2025-07-23
CVE-2025-33020 IBM Engineering Systems Design Rhapsody information disclosure — Engineering Systems Design RhapsodyCWE-311 5.9 Medium2025-07-23
CVE-2025-36117 IBM Db2 Mirror for i session fixation — Db2 Mirror for iCWE-384 6.3 Medium2025-07-23
CVE-2025-36116 IBM Db2 Mirror for i cross-site websocket hijacking — Db2 Mirror for iCWE-1385 6.3 Medium2025-07-23
CVE-2024-41750 IBM SmartCloud Analytics - Log Analysis security bypass — SmartCloud Analytics Log AnalysisCWE-602 5.5 Medium2025-07-23
CVE-2024-40682 IBM SmartCloud Analytics - Log Analysis denial of service — SmartCloud Analytics Log AnalysisCWE-1287 6.2 Medium2025-07-23
CVE-2024-40686 IBM SmartCloud Analytics - Log Analysis HOST header injection — SmartCloud Analytics Log AnalysisCWE-644 5.4 Medium2025-07-23
CVE-2024-41751 IBM SmartCloud Analytics - Log Analysis security bypass — SmartCloud Analytics Log AnalysisCWE-602 5.5 Medium2025-07-23
CVE-2024-38335 IBM Security QRadar Network Threat Analytics denial of service — Security QRadar Network Threat AnalyticsCWE-770 4.5 Medium2025-07-22
CVE-2025-36057 IBM Cognos Analytics Mobile (iOS) authentication bypass — Cognos Analytics MobileCWE-299 5.2 Medium2025-07-21
CVE-2025-36062 IBM Cognos Analytics Mobile (iOS) information disclosure — Cognos Analytics MobileCWE-311 5.9 Medium2025-07-21
CVE-2025-36106 IBM Cognos Analytics Mobile (iOS) information disclosure — Cognos Analytics MobileCWE-326 6.5 Medium2025-07-21
CVE-2025-36107 IBM Cognos Analytics Mobile (iOS) information disclosure — Cognos Analytics MobileCWE-319 5.9 Medium2025-07-21
CVE-2025-33014 IBM Sterling B2B Integrator and IBM Sterling File Gateway link injection — Sterling B2B IntegratorCWE-1022 5.4 Medium2025-07-18
CVE-2025-36097 IBM WebSphere Application Server denial of service — WebSphere Application ServerCWE-121 7.5 High2025-07-16

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.