Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

IBM — Vulnerabilities & Security Advisories 4615

Browse all 4615 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top 10 Products IBM:DB2 for Linux, UNIX and WindowsInfoSphere Information ServerSterling B2B IntegratorWebSphere Application ServerSecurity GuardiumQRadar SIEMCognos AnalyticsMQMaximo Asset ManagementAPI ConnectRational Quality ManagerRational Collaborative Lifecycle ManagementSecurity Key Lifecycle ManagerAIXiSpectrum Protect PlusSpectrum ScaleRobotic Process AutomationUrbanCode DeployCognos ControllerAspera FaspexSterling File GatewaySecurity Identity Governance and IntelligenceRational DOORS Next GenerationCloud Pak for SecurityConcertCloud Pak SystemFinancial Transaction ManagerContent NavigatorPlanning Analytics Local
CVE IDTitleCVSSSeverityPaused
CVE-2025-36371 IBM i Information Disclosure — iCWE-598 6.5 Medium2025-11-19
CVE-2025-36118 IBM Storage Virtualize Information Disclosure — Storage VirtualizeCWE-244 7.5 High2025-11-17
CVE-2025-36299 IBM Planning Analytics Information Disclosure — IBM Planning Analytics LocalCWE-540 4.3 Medium2025-11-17
CVE-2025-36357 IBM Planning Analytics Local Directory Traversal — IBM Planning Analytics LocalCWE-36 8.0 High2025-11-17
CVE-2025-36236 AIX Path Traversal — AIXCWE-22 8.2 High2025-11-13
CVE-2025-36250 AIX Code Execution — AIXCWE-114 10.0 Critical2025-11-13
CVE-2025-36096 AIX Insufficiently Protected Credentials — AIXCWE-522 9.0 Critical2025-11-13
CVE-2025-36251 AIX Command Execution — AIXCWE-114 9.6 Critical2025-11-13
CVE-2025-33119 IBM QRadar SIEM Information Disclosure — QRadar Security Information and Event ManagementCWE-260 6.5 Medium2025-11-12
CVE-2025-36223 IBM OpenPages Host Header Injection — OpenPagesCWE-644 5.4 Medium2025-11-12
CVE-2025-27368 IBM OpenPages Information Disclosure — OpenPagesCWE-497 4.3 Medium2025-11-12
CVE-2025-33150 IBM Cognos Analytics Certified Containers information disclosure — Cognos Analytics Certified ContainersCWE-552 5.3 Medium2025-11-10
CVE-2025-36006 IBM Db2 denial of service — Db2CWE-404 6.5 Medium2025-11-07
CVE-2025-36008 IBM Db2 denial of service — Db2CWE-770 6.5 Medium2025-11-07
CVE-2025-36131 IBM Db2 information disclosure — Db2CWE-359 4.6 Medium2025-11-07
CVE-2025-36136 IBM denial of service — Db2CWE-770 5.1 Medium2025-11-07
CVE-2025-36185 IBM Db2 denial of service — Db2CWE-943 6.2 Medium2025-11-07
CVE-2025-36186 IBM Db2 privilege escalation — Db2CWE-250 7.4 High2025-11-07
CVE-2025-33012 IBM Db2 improper account lockout — Db2CWE-324 6.3 Medium2025-11-07
CVE-2025-2534 IBM Db2 denial of service — Db2CWE-789 5.3 Medium2025-11-07
CVE-2025-36135 IBM Sterling B2B Integrator and IBM Sterling File Gateway are Vulnerable to Cross-Site Scripting — Sterling B2B IntegratorCWE-79 5.4 Medium2025-11-07
CVE-2024-47118 IBM Db2 is vulnerable to a denial of service as the server may crash under certain conditions with a specially crafted query — Db2CWE-121 6.5 Medium2025-11-07
CVE-2025-33110 IBM OpenPages Vulnerable to HTML Injection — OpenPagesCWE-80 5.4 Medium2025-11-06
CVE-2025-36054 Cross-site scripting vulnerability affect IBM Business Automation Workflow Process Federation Server - — Business Automation Workflow containersCWE-79 6.1 Medium2025-11-06
CVE-2025-36172 Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for 24.0.0-IF007, 24.0.1-IF005 and 25.0.0-IF002 — Cloud Pak for Business AutomationCWE-79 6.4 Medium2025-11-03
CVE-2025-12531 IBM InfoSphere Information Server is affected by an XML external entity injection (XXE) vulnerability — InfoSphere Information ServerCWE-611 7.1 High2025-11-03
CVE-2025-36093 security vulnerabilities are addressed with IBM Business Automation Insights iFixes for October 2025. — Cloud Pak For Business AutomationCWE-602 4.8 Medium2025-11-03
CVE-2025-36092 IBM Business Automation Insights improper input validation — Cloud Pak For Business AutomationCWE-1284 6.5 Medium2025-11-03
CVE-2025-36091 IBM Business Automation Insights unverified ownership — Cloud Pak For Business AutomationCWE-283 4.3 Medium2025-11-03
CVE-2025-36367 IBM i is affected by a privilege escalation in IBM i SQL services — iCWE-862 8.8 High2025-11-01

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.