Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4689

Browse all 4689 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IBM operates as a multinational technology and consulting corporation, primarily providing enterprise software, hybrid cloud services, and artificial intelligence solutions. Its extensive portfolio, including the Red Hat OpenShift platform and Watson AI suite, creates a broad attack surface that has historically been associated with Remote Code Execution (RCE) vulnerabilities, particularly within web application frameworks and middleware. Cross-site scripting (XSS) and privilege escalation flaws also frequently appear in its legacy enterprise applications and containerized environments. While the company maintains robust security protocols, past incidents have included data breaches affecting customer information and supply chain compromises. The high volume of recorded Common Vulnerabilities and Exposures (CVEs) reflects the complexity and scale of its global infrastructure rather than inherent systemic failure, though it necessitates rigorous patch management and continuous monitoring for enterprise clients relying on its diverse technological stack.

Top products by IBM: DB2 for Linux, UNIX and Windows InfoSphere Information Server Sterling B2B Integrator WebSphere Application Server Security Guardium QRadar SIEM Cognos Analytics MQ Maximo Asset Management API Connect Rational Quality Manager Rational Collaborative Lifecycle Management Security Key Lifecycle Manager i AIX Spectrum Protect Plus Spectrum Scale Robotic Process Automation Cognos Controller UrbanCode Deploy Aspera Faspex Sterling File Gateway Rational DOORS Next Generation Security Identity Governance and Intelligence Cloud Pak System Concert Cloud Pak for Security Financial Transaction Manager Content Navigator Business Automation Workflow
CVE IDTitleCVSSSeverityPublished
CVE-2016-0205 IBM Cloud Orchestrator 安全漏洞 — Cloud Orchestrator 3.3 -2018-08-30
CVE-2016-0234 IBM OpenPages GRC Platform 安全漏洞 — OpenPages GRC Platform 3.3 -2018-08-30
CVE-2016-0373 IBM UrbanCode Deploy 信息泄露漏洞 — UrbanCode Deploy 6.5 -2018-08-30
CVE-2018-1705 IBM Spectrum Symphony和Platform Symphony 信息泄露漏洞 — Platform Symphony 6.5 -2018-08-28
CVE-2018-1644 IBM WebSphere Commerce 信息泄露漏洞 — WebSphere Commerce 4.3 -2018-08-27
CVE-2018-1699 IBM Maximo Asset Management SQL注入漏洞 — Maximo Asset Management 8.3 -2018-08-24
CVE-2018-1722 IBM Security Access Manager Appliance 命令注入漏洞 — Security Access Manager Appliance 10.0 -2018-08-24
CVE-2018-1755 IBM WebSphere Application Server Liberty 信息泄露漏洞 — WebSphere Application Server 5.9 -2018-08-24
CVE-2018-1599 IBM API Connect 安全漏洞 — API Connect 6.1 -2018-08-22
CVE-2017-1753 多款IBM产品跨站脚本漏洞 — Rational DOORS Next Generation 5.4 -2018-08-20
CVE-2018-1394 多款IBM产品跨站脚本漏洞 — Rational DOORS Next Generation 5.4 -2018-08-20
CVE-2018-1517 IBM SDK, Java Technology Edition 输入验证错误漏洞 — SDK, Java Technology Edition 7.5 -2018-08-20
CVE-2018-1656 IBM SDK, Java Technology Edition 路径遍历漏洞 — SDK, Java Technology Edition 6.5 -2018-08-20
CVE-2017-1732 IBM Security Access Manager for Enterprise Single Sign-On 安全漏洞 — Security Access Manager for Enterprise Single Sign-On 4.3 -2018-08-17
CVE-2018-1712 IBM API Connect Developer Portal 安全漏洞 — API Connect 9.3 -2018-08-16
CVE-2018-1715 IBM Maximo Asset Management 跨站脚本漏洞 — Maximo Asset Management 5.4 -2018-08-16
CVE-2018-1455 IBM Tivoli Application Dependency Discovery Manager 跨站请求伪造漏洞 — Tivoli Application Dependency Discovery Manager 8.8 -2018-08-15
CVE-2016-2922 IBM Rational ClearQuest 安全漏洞 — Rational ClearQuest 5.9 -2018-08-13
CVE-2017-1749 IBM UrbanCode Deploy 路径遍历漏洞 — UrbanCode Deploy 5.3 -2018-08-13
CVE-2018-1690 IBM Rhapsody Model Manager 跨站脚本漏洞 — Rhapsody Model Manager 5.4 -2018-08-07
CVE-2017-1366 IBM Security Identity Governance and Intelligence 安全漏洞 — Security Identity Governance and Intelligence 7.5 -2018-08-06
CVE-2017-1368 IBM Security Identity Governance and Intelligence 安全漏洞 — Security Identity Governance and Intelligence 4.3 -2018-08-06
CVE-2017-1396 IBM Security Identity Governance and Intelligence 安全漏洞 — Security Identity Governance and Intelligence 6.8 -2018-08-06
CVE-2017-1409 IBM Security Identity Governance and Intelligence 安全漏洞 — Security Identity Governance and Intelligence 5.3 -2018-08-06
CVE-2017-1411 IBM Security Identity Governance and Intelligence 安全漏洞 — Security Identity Governance and Intelligence 7.5 -2018-08-06
CVE-2017-1412 IBM Security Identity Governance and Intelligence 安全漏洞 — Security Identity Governance and Intelligence 5.3 -2018-08-06
CVE-2017-1755 IBM Security Identity Governance and Intelligence 安全漏洞 — Security Identity Governance and Intelligence 6.7 -2018-08-06
CVE-2018-1422 IBM Rational DOORS Next Generation 跨站脚本漏洞 — Rational DOORS Next Generation 5.4 -2018-08-06
CVE-2018-1528 IBM Maximo Asset Management 安全漏洞 — Maximo Asset Management 4.3 -2018-08-06
CVE-2018-1551 IBM WebSphere MQ 安全漏洞 — WebSphere MQ 7.5 -2018-08-06

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.