Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4710

Browse all 4710 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IBM operates as a multinational technology and consulting corporation, primarily providing enterprise software, hybrid cloud services, and artificial intelligence solutions. Its extensive portfolio, including the Red Hat OpenShift platform and Watson AI suite, creates a broad attack surface that has historically been associated with Remote Code Execution (RCE) vulnerabilities, particularly within web application frameworks and middleware. Cross-site scripting (XSS) and privilege escalation flaws also frequently appear in its legacy enterprise applications and containerized environments. While the company maintains robust security protocols, past incidents have included data breaches affecting customer information and supply chain compromises. The high volume of recorded Common Vulnerabilities and Exposures (CVEs) reflects the complexity and scale of its global infrastructure rather than inherent systemic failure, though it necessitates rigorous patch management and continuous monitoring for enterprise clients relying on its diverse technological stack.

Top products by IBM: DB2 for Linux, UNIX and Windows InfoSphere Information Server WebSphere Application Server Sterling B2B Integrator Security Guardium QRadar SIEM Cognos Analytics MQ Maximo Asset Management API Connect Rational Quality Manager i Rational Collaborative Lifecycle Management Security Key Lifecycle Manager AIX Spectrum Protect Plus Spectrum Scale Robotic Process Automation Cognos Controller UrbanCode Deploy Aspera Faspex Sterling File Gateway Security Identity Governance and Intelligence Rational DOORS Next Generation Cloud Pak System Concert Cloud Pak for Security Financial Transaction Manager Content Navigator Business Automation Workflow
CVE IDTitleCVSSSeverityPublished
CVE-2018-1476 IBM BigFix Platform 安全漏洞 — BigFix Platform 5.3 -2018-12-12
CVE-2018-1478 IBM BigFix Platform 安全漏洞 — BigFix Platform 5.4 -2018-12-12
CVE-2018-1480 IBM BigFix Platform 安全漏洞 — BigFix Platform 5.3 -2018-12-12
CVE-2018-1481 IBM BigFix Platform 安全漏洞 — BigFix Platform 5.3 -2018-12-12
CVE-2018-1484 IBM BigFix Platform 安全漏洞 — BigFix Platform 4.3 -2018-12-12
CVE-2018-1485 IBM BigFix Platform 安全漏洞 — BigFix Platform 3.3 -2018-12-12
CVE-2018-1901 IBM WebSphere Application Server 权限许可和访问控制问题漏洞 — WebSphere Application Server 9.8 -2018-12-12
CVE-2018-1926 IBM WebSphere Application Server 跨站请求伪造漏洞 — WebSphere Application Server 8.8 -2018-12-12
CVE-2018-1652 IBM DataPower Gateway和MQ Appliance 安全漏洞 — DataPower Gateways 8.1 -2018-12-11
CVE-2018-1654 IBM Curam Social Program Management 安全漏洞 — Curam Social Program Management 6.1 -2018-12-11
CVE-2018-1900 IBM Cúram Social Program Management 跨站脚本漏洞 — Curam Social Program Management 5.4 -2018-12-11
CVE-2018-1904 IBM WebSphere Application Server 代码问题漏洞 — WebSphere Application Server 9.8 -2018-12-11
CVE-2018-1957 IBM WebSphere Application Server 信息泄露漏洞 — WebSphere Application Server 7.5 -2018-12-10
CVE-2018-1424 IBM Marketing Platform 安全漏洞 — Marketing Platform 7.1 -2018-12-07
CVE-2018-1663 IBM DataPower Gateways 安全漏洞 — DataPower Gateways 5.9 -2018-12-07
CVE-2018-1883 IBM MQ Console REST API 安全漏洞 — MQ 7.5 -2018-12-07
CVE-2018-1896 IBM Connections 安全漏洞 — Connections 5.4 -2018-12-07
CVE-2018-1920 IBM Marketing Platform 安全漏洞 — Marketing Platform 7.1 -2018-12-07
CVE-2018-1504 IBM i2 Enterprise Insight Analysis 输入验证错误漏洞 — i2 Enterprise Insight Analysis 5.4 -2018-12-06
CVE-2018-1505 IBM i2 Enterprise Insight Analysis 信息泄露漏洞 — i2 Enterprise Insight Analysis 3.3 -2018-12-06
CVE-2018-1525 IBM i2 Enterprise Insight Analysis 信息泄露漏洞 — i2 Enterprise Insight Analysis 5.9 -2018-12-06
CVE-2018-1871 IBM Financial Transaction Manager for Digital Payments 跨站脚本漏洞 — Financial Transaction Manager 5.4 -2018-12-06
CVE-2018-1935 IBM Connections 信息泄露漏洞 — Connections 4.3 -2018-12-06
CVE-2017-1622 IBM QRadar SIEM 安全漏洞 — QRadar SIEM 7.4 -2018-12-05
CVE-2018-1568 IBM QRadar SIEM 信息泄露漏洞 — QRadar SIEM 3.3 -2018-12-05
CVE-2018-1650 IBM QRadar Incident Forensics 信任管理问题漏洞 — QRadar SIEM 9.8 -2018-12-05
CVE-2018-1697 IBM Maximo Asset Management 信息泄露漏洞 — Maximo Asset Management 4.3 -2018-12-05
CVE-2018-1728 IBM QRadar SIEM 跨站脚本漏洞 — QRadar SIEM 5.4 -2018-12-05
CVE-2018-1730 IBM QRadar SIEM 安全漏洞 — QRadar SIEM 5.5 -2018-12-05
CVE-2018-1732 IBM QRadar Advisor with Watson 信息泄露漏洞 — QRadar SIEM 5.3 -2018-12-05

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.