Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4615

Browse all 4615 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by IBM:DB2 for Linux, UNIX and WindowsInfoSphere Information ServerSterling B2B IntegratorWebSphere Application ServerSecurity GuardiumQRadar SIEMCognos AnalyticsMQMaximo Asset ManagementAPI ConnectRational Quality ManagerRational Collaborative Lifecycle ManagementSecurity Key Lifecycle ManagerAIXiSpectrum Protect PlusSpectrum ScaleRobotic Process AutomationUrbanCode DeployCognos ControllerAspera FaspexSterling File GatewaySecurity Identity Governance and IntelligenceRational DOORS Next GenerationCloud Pak for SecurityConcertCloud Pak SystemFinancial Transaction ManagerContent NavigatorPlanning Analytics Local
CVE IDTitleCVSSSeverityPublished
CVE-2025-3440 IBM Security Guardium cross-site scripting — Security GuardiumCWE-79 5.5 Medium2025-05-15
CVE-2025-33104 IBM WebSphere Application Server cross — WebSphere Application ServerCWE-79 4.4 Medium2025-05-14
CVE-2025-2900 IBM Semeru Runtime denial of service — Semeru RuntimeCWE-122 7.5 High2025-05-14
CVE-2025-3632 IBM 4769 Developers Toolkit denial of service — 4769 Developers ToolkitCWE-789 7.5 High2025-05-12
CVE-2025-1137 IBM Storage Scale command injection — Storage ScaleCWE-250 7.5 High2025-05-10
CVE-2025-1993 IBM App Connect Enterprise Certified Container information disclosure — App Connect Enterprise Certified ContainerCWE-521 5.1 Medium2025-05-09
CVE-2025-1331 IBM CICS TX code execution — CICS TX StandardCWE-242 7.8 High2025-05-08
CVE-2025-1330 IBM CICS TX code execution — CICS TX StandardCWE-787 7.8 High2025-05-08
CVE-2025-1329 IBM CICS TX code execution — CICS TX StandardCWE-787 7.8 High2025-05-08
CVE-2025-33093 IBM Sterling Partner Engagement Manager information disclosure — Sterling Partner Engagement ManagerCWE-260 7.5 High2025-05-07
CVE-2025-3218 IBM i improper certificate validation — iCWE-295 5.4 Medium2025-05-07
CVE-2025-2898 IBM Maximo Application Suite privilege escalation — Maximo Application SuiteCWE-266 7.5 High2025-05-06
CVE-2025-1493 IBM Db2 denial of service — Db2 for Linux, UNIX and WindowsCWE-362 5.3 Medium2025-05-05
CVE-2025-0915 IBM Db2 denial of service — Db2 for Linux, UNIX and WindowsCWE-770 5.3 Medium2025-05-05
CVE-2025-1000 IBM Db2 denial of service — Db2 for Linux, UNIX and WindowsCWE-770 5.3 Medium2025-05-05
CVE-2025-1992 IBM Db2 denial of service — Db2 for Linux, UNIX and WindowsCWE-401 5.3 Medium2025-05-05
CVE-2025-1838 IBM Cloud Pak for Business Automation denial of service — Cloud Pak for Business AutomationCWE-602 6.5 Medium2025-05-03
CVE-2025-1495 IBM Business Automation Workflow missing authentication — IBM Business Automation WorkflowCWE-306 4.3 Medium2025-05-03
CVE-2024-41753 IBM Cloud Pak for Business Automation cross-site scripting — Cloud Pak for Business AutomationCWE-79 6.1 Medium2025-05-03
CVE-2024-55910 IBM Concert Software server-side request forgery — Concert SoftwareCWE-918 6.5 Medium2025-05-02
CVE-2024-55913 IBM Concert Software path traversal — Concert SoftwareCWE-22 5.3 Medium2025-05-02
CVE-2024-55912 IBM Concert Software information disclosure — Concert SoftwareCWE-327 5.9 Medium2025-05-02
CVE-2024-55909 IBM Concert Software denial of service — Concert SoftwareCWE-409 6.5 Medium2025-05-02
CVE-2024-52903 IBM Db2 denial of service — Db2 for Linux, UNIX and WindowsCWE-248 5.3 Medium2025-05-01
CVE-2025-1333 IBM MQ Operator information disclosure — MQ OperatorCWE-214 6.0 Medium2025-05-01
CVE-2025-27365 IBM MQ Operator denial of service — MQ OperatorCWE-416 6.5 Medium2025-05-01
CVE-2025-1551 IBM Operational Decision Manager cross-site scripting — Operational Decision ManagerCWE-79 6.1 Medium2025-04-29
CVE-2025-2986 IBM Maximo Asset Management cross-site scripting — Maximo Asset ManagementCWE-79 5.5 Medium2025-04-25
CVE-2025-25046 IBM InfoSphere Information Server information disclosure — InfoSphere Information ServerCWE-319 3.7 Low2025-04-23
CVE-2025-25045 IBM InfoSphere Information Server information disclosure — InfoSphere Information ServerCWE-209 4.3 Medium2025-04-23

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.