Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4629

Browse all 4629 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IBM operates as a multinational technology and consulting corporation, primarily providing enterprise software, hybrid cloud services, and artificial intelligence solutions. Its extensive portfolio, including the Red Hat OpenShift platform and Watson AI suite, creates a broad attack surface that has historically been associated with Remote Code Execution (RCE) vulnerabilities, particularly within web application frameworks and middleware. Cross-site scripting (XSS) and privilege escalation flaws also frequently appear in its legacy enterprise applications and containerized environments. While the company maintains robust security protocols, past incidents have included data breaches affecting customer information and supply chain compromises. The high volume of recorded Common Vulnerabilities and Exposures (CVEs) reflects the complexity and scale of its global infrastructure rather than inherent systemic failure, though it necessitates rigorous patch management and continuous monitoring for enterprise clients relying on its diverse technological stack.

Top products by IBM: DB2 for Linux, UNIX and Windows InfoSphere Information Server Sterling B2B Integrator WebSphere Application Server Security Guardium QRadar SIEM Cognos Analytics MQ Maximo Asset Management API Connect Rational Quality Manager Rational Collaborative Lifecycle Management Security Key Lifecycle Manager i AIX Spectrum Protect Plus Robotic Process Automation Spectrum Scale UrbanCode Deploy Cognos Controller Aspera Faspex Sterling File Gateway Rational DOORS Next Generation Security Identity Governance and Intelligence Cloud Pak for Security Cloud Pak System Concert Financial Transaction Manager Content Navigator Jazz Reporting Service
CVE IDTitleCVSSSeverityPublished
CVE-2017-1382 IBM WebSphere Application Server 安全漏洞 — WebSphere Application Server 7.1 -2017-07-24
CVE-2017-1267 IBM Security Guardium 输入验证漏洞 — Security Guardium 4.9 -2017-07-21
CVE-2017-1371 IBM TRIRIGA Application Platform Builder工具安全漏洞 — TRIRIGA Application Platform 8.8 -2017-07-21
CVE-2017-1372 IBM TRIRIGA Application Platform 跨站脚本漏洞 — TRIRIGA Application Platform 5.4 -2017-07-21
CVE-2017-1373 IBM TRIRIGA Application Platform 访问控制错误漏洞 — TRIRIGA Application Platform 8.8 -2017-07-21
CVE-2017-1374 IBM TRIRIGA Application Platform 信息泄露漏洞 — TRIRIGA Application Platform 7.5 -2017-07-21
CVE-2017-1381 IBM WebSphere Application Server 信息泄露漏洞 — WebSphere Application Server 3.3 -2017-07-21
CVE-2016-6018 IBM Emptoris Contract Management 信息泄露漏洞 — Emptoris Contract Management 5.3 -2017-07-19
CVE-2017-1203 IBM BigFix Platform 跨站脚本漏洞 — BigFix family 5.4 -2017-07-19
CVE-2017-1218 IBM BigFix Platform Tivoli Endpoint Manager 跨站请求伪造漏洞 — BigFix family 8.8 -2017-07-19
CVE-2017-1219 IBM BigFix Platform Tivoli Endpoint Manager 安全漏洞 — BigFix family 7.1 -2017-07-19
CVE-2017-1223 IBM BigFix Platform Tivoli Endpoint Manager 安全漏洞 — BigFix family 6.1 -2017-07-19
CVE-2017-1224 IBM BigFix Platform Tivoli Endpoint Manager 安全漏洞 — BigFix family 7.5 -2017-07-19
CVE-2017-1309 IBM InfoSphere MDM Reference Data Management Hub 安全漏洞 — InfoSphere Master Data Management 7.8 -2017-07-19
CVE-2017-1318 IBM MQ Appliance 安全漏洞 — MQ Appliance 7.2 -2017-07-18
CVE-2017-1181 IBM Tivoli Monitoring 信息泄露漏洞 — Tivoli Monitoring V6 7.8 -2017-07-14
CVE-2017-1182 IBM Tivoli Monitoring 安全漏洞 — Tivoli Monitoring V6 7.5 -2017-07-14
CVE-2017-1183 IBM Tivoli Monitoring SQL注入漏洞 — Tivoli Monitoring V6 7.5 -2017-07-14
CVE-2016-6019 IBM Emptoris Strategic Supply Management 跨站脚本漏洞 — Emptoris Strategic Supply Management 5.4 -2017-07-13
CVE-2016-8951 IBM Emptoris Strategic Supply Management 安全漏洞 — Emptoris Strategic Supply Management 7.5 -2017-07-13
CVE-2016-8952 IBM Emptoris Strategic Supply Management 跨站脚本漏洞 — Emptoris Strategic Supply Management 5.4 -2017-07-13
CVE-2016-8964 IBM License Metric Tool和BigFix Inventory 安全漏洞 — BigFix Inventory 9.1 -2017-07-13
CVE-2017-1308 IBM Daeja ViewONE 安全漏洞 — Daeja ViewONE 6.5 -2017-07-13
CVE-2016-6114 IBM Emptoris Sourcing 跨站脚本漏洞 — Emptoris Sourcing 5.4 -2017-07-12
CVE-2016-8946 IBM Emptoris Sourcing 跨站脚本漏洞 — Emptoris Sourcing 5.4 -2017-07-12
CVE-2016-8947 IBM Emptoris Sourcing 安全漏洞 — Emptoris Sourcing 5.4 -2017-07-12
CVE-2016-8948 IBM Emptoris Sourcing 跨站脚本漏洞 — Emptoris Sourcing 5.4 -2017-07-12
CVE-2016-8950 IBM Emptoris Sourcing 跨站脚本漏洞 — Emptoris Sourcing 5.4 -2017-07-12
CVE-2016-8953 IBM Emptoris Sourcing 安全漏洞 — Emptoris Sourcing 5.4 -2017-07-12
CVE-2017-1285 IBM MQ 安全漏洞 — MQ 6.5 -2017-07-12

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.