Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

IBM — Vulnerabilities & Security Advisories 4615

Browse all 4615 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top 10 Products IBM:DB2 for Linux, UNIX and WindowsInfoSphere Information ServerSterling B2B IntegratorWebSphere Application ServerSecurity GuardiumQRadar SIEMCognos AnalyticsMQMaximo Asset ManagementAPI ConnectRational Quality ManagerRational Collaborative Lifecycle ManagementSecurity Key Lifecycle ManagerAIXiSpectrum Protect PlusSpectrum ScaleRobotic Process AutomationUrbanCode DeployCognos ControllerAspera FaspexSterling File GatewaySecurity Identity Governance and IntelligenceRational DOORS Next GenerationCloud Pak for SecurityConcertCloud Pak SystemFinancial Transaction ManagerContent NavigatorPlanning Analytics Local
CVE IDTitleCVSSSeverityPaused
CVE-2025-36442 IBM Db2 Denial of Service — Db2 for Linux, UNIX and WindowsCWE-943 6.5 Medium2026-01-30
CVE-2025-36419 Multiple vulnerabilities found in IBM ApplinX. — ApplinXCWE-550 5.3 Medium2026-01-20
CVE-2025-36418 Multiple vulnerabilities found in IBM ApplinX. — ApplinXCWE-347 7.3 High2026-01-20
CVE-2025-36411 Multiple vulnerabilities found in IBM ApplinX. — ApplinXCWE-352 3.5 Low2026-01-20
CVE-2025-36410 Multiple vulnerabilities found in IBM ApplinX. — ApplinXCWE-602 3.1 Low2026-01-20
CVE-2025-36409 Multiple vulnerabilities found in IBM ApplinX. — ApplinXCWE-79 5.4 Medium2026-01-20
CVE-2025-36408 Multiple vulnerabilities found in IBM ApplinX. — ApplinXCWE-79 6.4 Medium2026-01-20
CVE-2025-36397 Security vulnerabilities have been found in IBM Application Gateway — Application GatewayCWE-80 5.4 Medium2026-01-20
CVE-2025-36396 Security vulnerabilities have been found in IBM Application Gateway — Application GatewayCWE-79 5.4 Medium2026-01-20
CVE-2025-36115 Multiple vulnerabilities were addressed in IBM Sterling Connect:Express for UNIX. — Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0CWE-384 6.3 Medium2026-01-20
CVE-2025-36113 Multiple vulnerabilities were addressed in IBM Sterling Connect:Express for UNIX. — Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0CWE-79 5.4 Medium2026-01-20
CVE-2025-36066 Multiple vulnerabilities were addressed in IBM Sterling Connect:Express for UNIX. — Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0CWE-79 6.1 Medium2026-01-20
CVE-2025-36065 Multiple vulnerabilities were addressed in IBM Sterling Connect:Express for UNIX. — Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0CWE-613 6.3 Medium2026-01-20
CVE-2025-36063 Multiple vulnerabilities were addressed in IBM Sterling Connect:Express for UNIX. — Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0CWE-613 6.3 Medium2026-01-20
CVE-2025-36058 Multiple security vulnerabilities are addressed in IBM Business Automation Workflow Containers fixes December 2025 — Business Automation Workflow containersCWE-538 5.5 Medium2026-01-20
CVE-2025-36059 Multiple security vulnerabilities are addressed in IBM Business Automation Workflow Containers fixes December 2025 — Business Automation Workflow containersCWE-250 4.7 Medium2026-01-20
CVE-2025-33015 Multiple Vulnerabilities in IBM Concert Software — ConcertCWE-434 8.8 High2026-01-20
CVE-2025-1722 Multiple Vulnerabilities in IBM Concert Software — ConcertCWE-244 5.9 Medium2026-01-20
CVE-2025-1719 Multiple Vulnerabilities in IBM Concert Software — ConcertCWE-244 5.9 Medium2026-01-20
CVE-2025-14115 IBM Sterling Connect:Direct for UNIX Container is affected by vulnerability where hard-coded credentials are embeeded in the product for its internal use. — Sterling Connect:Direct for UNIX ContainerCWE-798 8.4 High2026-01-20
CVE-2025-13925 Multiple vulnerabilities in IBM Aspera Console — Aspera ConsoleCWE-532 4.9 Medium2026-01-20
CVE-2025-12985 License Service: Privilege escalation vulnerability — IBM Licensing OperatorCWE-732 8.4 High2026-01-20
CVE-2025-64645 Multiple Vulnerabilities in IBM Concert Software. — ConcertCWE-367 7.7 High2025-12-26
CVE-2025-36230 XSS in IBM Aspera Faspex — Aspera Faspex 5CWE-80 5.4 Medium2025-12-26
CVE-2025-36229 Exposure of Sensitive System Information to an Unauthorized Control Sphere in IBM Aspera Faspex — Aspera Faspex 5CWE-497 3.1 Low2025-12-26
CVE-2025-36228 Incorrect Execution-Assigned Permissions in IBM Aspera Faspex — Aspera Faspex 5CWE-279 3.8 Low2025-12-26
CVE-2025-36192 Missing Authorization with the DS8900F and DS8A00 Hardware Management Console — DS8A00( R10.1)CWE-862 6.7 Medium2025-12-26
CVE-2025-14687 Client-Side Enforcement of Server-Side Security in IBM Db2 Intelligence Center — Db2 Intelligence CenterCWE-602 4.3 Medium2025-12-26
CVE-2025-13915 Authentication bypass in IBM API Connect — API ConnectCWE-305 9.8 Critical2025-12-26
CVE-2025-12771 IBM Concert Software Improper Restriction of Operations within the Bounds of a Memory Buffer. — ConcertCWE-119 7.8 High2025-12-26

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.