Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4710

Browse all 4710 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IBM operates as a multinational technology and consulting corporation, primarily providing enterprise software, hybrid cloud services, and artificial intelligence solutions. Its extensive portfolio, including the Red Hat OpenShift platform and Watson AI suite, creates a broad attack surface that has historically been associated with Remote Code Execution (RCE) vulnerabilities, particularly within web application frameworks and middleware. Cross-site scripting (XSS) and privilege escalation flaws also frequently appear in its legacy enterprise applications and containerized environments. While the company maintains robust security protocols, past incidents have included data breaches affecting customer information and supply chain compromises. The high volume of recorded Common Vulnerabilities and Exposures (CVEs) reflects the complexity and scale of its global infrastructure rather than inherent systemic failure, though it necessitates rigorous patch management and continuous monitoring for enterprise clients relying on its diverse technological stack.

Top products by IBM: DB2 for Linux, UNIX and Windows InfoSphere Information Server WebSphere Application Server Sterling B2B Integrator Security Guardium QRadar SIEM Cognos Analytics MQ Maximo Asset Management API Connect Rational Quality Manager i Rational Collaborative Lifecycle Management Security Key Lifecycle Manager AIX Spectrum Protect Plus Spectrum Scale Robotic Process Automation Cognos Controller UrbanCode Deploy Aspera Faspex Sterling File Gateway Security Identity Governance and Intelligence Rational DOORS Next Generation Cloud Pak System Concert Cloud Pak for Security Financial Transaction Manager Content Navigator Business Automation Workflow
CVE IDTitleCVSSSeverityPublished
CVE-2018-1842 IBM Cognos Analytics Configuration 安全漏洞 — Cognos Analytics 3.6 -2018-11-09
CVE-2018-1857 IBM DB2 信息泄露漏洞 — DB2 for Linux, UNIX and Windows 6.5 -2018-11-09
CVE-2018-1606 多款IBM产品信息泄露漏洞 — Rational Team Concert 4.3 -2018-11-06
CVE-2018-1694 多款IBM产品信息泄露漏洞 — Rational Team Concert 3.1 -2018-11-06
CVE-2017-1609 IBM Rational Quality Manager 跨站脚本漏洞 — Rational Quality Manager 5.4 -2018-11-02
CVE-2018-1552 IBM Robotic Process Automation with Automation Anywhere 安全漏洞 — Robotic Process Automation with Automation Anywhere 8.8 -2018-11-02
CVE-2018-1788 IBM Spectrum Protect Server 安全漏洞 — Spectrum Protect 5.5 -2018-11-02
CVE-2018-1835 IBM Daeja ViewONE Virtual 安全漏洞 — Daeja ViewONE 7.1 -2018-11-02
CVE-2018-1846 IBM Rational Engineering Lifecycle Manager 安全漏洞 — Rational Engineering Lifecycle Manager 7.1 -2018-11-02
CVE-2018-1876 IBM Robotic Process Automation with Automation Anywhere 安全漏洞 — Robotic Process Automation with Automation Anywhere 5.5 -2018-11-02
CVE-2018-1877 IBM Robotic Process Automation with Automation Anywhere 安全漏洞 — Robotic Process Automation with Automation Anywhere 7.1 -2018-11-02
CVE-2018-1878 IBM Robotic Process Automation with Automation Anywhere 安全漏洞 — Robotic Process Automation with Automation Anywhere 5.3 -2018-11-02
CVE-2018-1851 IBM WebSphere Application Server Liberty OpenID Connect 代码问题漏洞 — WebSphere Application Server 9.8 -2018-10-31
CVE-2018-1380 IBM InfoSphere Master Data Management 安全漏洞 — InfoSphere Master Data Management Collaboration Server 6.5 -2018-10-29
CVE-2018-1766 IBM Rational Team Concert 跨站脚本漏洞 — Rational Team Concert 5.4 -2018-10-29
CVE-2018-1767 IBM WebSphere Application Server CacheMonitor 跨站脚本漏洞 — WebSphere Application Server 6.1 -2018-10-29
CVE-2018-1541 IBM WebSphere Commerce 跨站脚本漏洞 — WebSphere Commerce Enterprise 5.4 -2018-10-24
CVE-2018-1850 IBM Security Access Manager 安全漏洞 — Security Access Manager Appliance 8.1 -2018-10-22
CVE-2018-1518 IBM Information Server Enterprise Server和InfoSphere Information Server on Cloud 安全漏洞 — InfoSphere Information Server 5.5 -2018-10-18
CVE-2018-1822 多款IBM产品GUI 安全漏洞 — FlashSystem 900 9.8 -2018-10-18
CVE-2018-1777 IBM WebSphere Application Server 跨站脚本漏洞 — WebSphere Application Server 5.4 -2018-10-16
CVE-2018-1744 IBM Security Key Lifecycle Manager 路径遍历漏洞 — Security Key Lifecycle Manager 7.5 -2018-10-15
CVE-2018-1747 IBM Security Key Lifecycle Manager 安全漏洞 — Security Key Lifecycle Manager 7.1 -2018-10-15
CVE-2018-1533 IBM Rational Publishing Engine 跨站脚本漏洞 — Rational Publishing Engine 5.4 -2018-10-12
CVE-2018-1534 IBM Rational Publishing Engine 跨站脚本漏洞 — Rational Publishing Engine 5.4 -2018-10-12
CVE-2018-1770 IBM WebSphere Application Server 路径遍历漏洞 — WebSphere Application Server 7.5 -2018-10-12
CVE-2018-1844 IBM FileNet Content Manager 安全漏洞 — FileNet Content Manager 7.1 -2018-10-12
CVE-2017-1231 IBM BigFix Platform 信任管理问题漏洞 — BigFix Platform 7.8 -2018-10-12
CVE-2018-1673 IBM WebSphere Portal 跨站脚本漏洞 — WebSphere Portal 6.1 -2018-10-12
CVE-2018-1838 IBM Cloud WebSphere Application Server 安全漏洞 — WebSphere Application Server 7.5 -2018-10-12

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.