Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4710

Browse all 4710 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IBM operates as a multinational technology and consulting corporation, primarily providing enterprise software, hybrid cloud services, and artificial intelligence solutions. Its extensive portfolio, including the Red Hat OpenShift platform and Watson AI suite, creates a broad attack surface that has historically been associated with Remote Code Execution (RCE) vulnerabilities, particularly within web application frameworks and middleware. Cross-site scripting (XSS) and privilege escalation flaws also frequently appear in its legacy enterprise applications and containerized environments. While the company maintains robust security protocols, past incidents have included data breaches affecting customer information and supply chain compromises. The high volume of recorded Common Vulnerabilities and Exposures (CVEs) reflects the complexity and scale of its global infrastructure rather than inherent systemic failure, though it necessitates rigorous patch management and continuous monitoring for enterprise clients relying on its diverse technological stack.

Top products by IBM: DB2 for Linux, UNIX and Windows InfoSphere Information Server WebSphere Application Server Sterling B2B Integrator Security Guardium QRadar SIEM Cognos Analytics MQ Maximo Asset Management API Connect Rational Quality Manager i Rational Collaborative Lifecycle Management Security Key Lifecycle Manager AIX Spectrum Protect Plus Spectrum Scale Robotic Process Automation Cognos Controller UrbanCode Deploy Aspera Faspex Sterling File Gateway Security Identity Governance and Intelligence Rational DOORS Next Generation Cloud Pak System Concert Cloud Pak for Security Financial Transaction Manager Content Navigator Business Automation Workflow
CVE IDTitleCVSSSeverityPublished
CVE-2019-4016 IBM DB2 缓冲区错误漏洞 — DB2 for Linux, UNIX and Windows 7.8 -2019-03-11
CVE-2018-1911 IBM Rational DOORS Next Generation 跨站脚本漏洞 — Rational DOORS Next Generation 5.4 -2019-03-06
CVE-2018-1912 IBM Rational DOORS Next Generation 跨站脚本漏洞 — Rational DOORS Next Generation 5.4 -2019-03-06
CVE-2019-4030 IBM WebSphere Application Server 跨站脚本漏洞 — WebSphere Application Server 5.4 -2019-03-06
CVE-2018-1875 IBM InfoSphere Information Governance Catalog和IBM InfoSphere Information Server on Cloud 输入验证错误漏洞 — InfoSphere Information Governance Catalog 6.1 -2019-03-05
CVE-2018-1899 IBM InfoSphere Information Server 访问控制错误漏洞 — InfoSphere Information Server 5.3 -2019-03-05
CVE-2018-1937 IBM Cloud Private 信息泄露漏洞 — Cloud Private 4.4 -2019-03-05
CVE-2018-1938 IBM Cloud Private 信息泄露漏洞 — Cloud Private 4.4 -2019-03-05
CVE-2018-1939 IBM Cloud Private 输入验证错误漏洞 — Cloud Private 6.1 -2019-03-05
CVE-2019-4027 IBM Sterling B2B Integrator 跨站脚本漏洞 — Sterling B2B Integrator 5.4 -2019-03-05
CVE-2019-4028 IBM Sterling B2B Integrator 跨站脚本漏洞 — Sterling B2B Integrator 5.4 -2019-03-05
CVE-2019-4029 IBM Sterling B2B Integrator 跨站脚本漏洞 — Sterling B2B Integrator 5.4 -2019-03-05
CVE-2019-4032 IBM FTM ACH SQL注入漏洞 — Financial Transaction Manager 9.8 -2019-03-05
CVE-2019-4063 IBM Sterling B2B Integrator 信息泄露漏洞 — Sterling B2B Integrator 5.9 -2019-03-05
CVE-2018-1775 多款IBM产品信息泄露漏洞 — torwize V7000 6.5 -2019-02-27
CVE-2019-4061 IBM BigFix Platform 信息泄露漏洞 — BigFix Platform 5.3 -2019-02-27
CVE-2018-1944 IBM Security Identity Governance and Intelligence 信任管理问题漏洞 — Security Identity Governance and Intelligence 9.8 -2019-02-21
CVE-2018-1945 IBM Security Identity Governance and Intelligence 输入验证错误漏洞 — Security Identity Governance and Intelligence 6.1 -2019-02-21
CVE-2018-1946 IBM Security Identity Governance and Intelligence 加密问题漏洞 — Security Identity Governance and Intelligence 7.5 -2019-02-21
CVE-2018-1947 IBM Security Identity Governance and Intelligence 跨站脚本漏洞 — Security Identity Governance and Intelligence 6.1 -2019-02-21
CVE-2018-1948 IBM Security Identity Governance and Intelligence 授权问题漏洞 — Security Identity Governance and Intelligence 4.3 -2019-02-21
CVE-2018-1949 IBM Security Identity Governance and Intelligence 信息泄露漏洞 — Security Identity Governance and Intelligence 5.3 -2019-02-21
CVE-2018-1950 IBM Security Identity Governance and Intelligence 信息泄露漏洞 — Security Identity Governance and Intelligence 4.3 -2019-02-21
CVE-2018-2006 IBM Robotic Process Automation with Automation Anywhere 路径遍历漏洞 — Robotic Process Automation with Automation Anywhere 6.5 -2019-02-21
CVE-2018-1996 IBM WebSphere Application Server 信息泄露漏洞 — WebSphere Application Server 5.9 -2019-02-19
CVE-2017-1695 IBM QRadar SIEM 加密问题漏洞 — QRadar SIEM 7.5 -2019-02-15
CVE-2018-1701 IBM InfoSphere Information Server 命令注入漏洞 — InfoSphere Information Server 7.5 -2019-02-15
CVE-2018-1727 IBM InfoSphere Information Server 代码问题漏洞 — InfoSphere Information Server 8.2 -2019-02-15
CVE-2018-1895 IBM InfoSphere Information Server 跨站脚本漏洞 — InfoSphere Information Server 5.4 -2019-02-15
CVE-2019-4059 IBM Rational ClearCase GIT connector 信任管理问题漏洞 — Rational ClearCase 9.8 -2019-02-15

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.