Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4689

Browse all 4689 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IBM operates as a multinational technology and consulting corporation, primarily providing enterprise software, hybrid cloud services, and artificial intelligence solutions. Its extensive portfolio, including the Red Hat OpenShift platform and Watson AI suite, creates a broad attack surface that has historically been associated with Remote Code Execution (RCE) vulnerabilities, particularly within web application frameworks and middleware. Cross-site scripting (XSS) and privilege escalation flaws also frequently appear in its legacy enterprise applications and containerized environments. While the company maintains robust security protocols, past incidents have included data breaches affecting customer information and supply chain compromises. The high volume of recorded Common Vulnerabilities and Exposures (CVEs) reflects the complexity and scale of its global infrastructure rather than inherent systemic failure, though it necessitates rigorous patch management and continuous monitoring for enterprise clients relying on its diverse technological stack.

Top products by IBM: DB2 for Linux, UNIX and Windows InfoSphere Information Server Sterling B2B Integrator WebSphere Application Server Security Guardium QRadar SIEM Cognos Analytics MQ Maximo Asset Management API Connect Rational Quality Manager Rational Collaborative Lifecycle Management Security Key Lifecycle Manager i AIX Spectrum Protect Plus Spectrum Scale Robotic Process Automation Cognos Controller UrbanCode Deploy Aspera Faspex Sterling File Gateway Rational DOORS Next Generation Security Identity Governance and Intelligence Cloud Pak System Concert Cloud Pak for Security Financial Transaction Manager Content Navigator Business Automation Workflow
CVE IDTitleCVSSSeverityPublished
CVE-2018-1487 IBM DB2 安全漏洞 — DB2 for Linux, UNIX and Windows 7.8 -2018-07-10
CVE-2018-1492 多款IBM产品安全漏洞 — Rational Engineering Lifecycle Manager 6.8 -2018-07-10
CVE-2018-1523 IBM Rational Quality Manager 跨站脚本漏洞 — Rational Quality Manager 5.4 -2018-07-10
CVE-2018-1549 IBM Rational Quality Manager 注入漏洞 — Rational Quality Manager 5.4 -2018-07-10
CVE-2018-1566 IBM DB2 格式化字符串漏洞 — DB2 for Linux, UNIX and Windows 7.8 -2018-07-10
CVE-2018-1407 IBM Rational Team Concert 跨站脚本漏洞 — Rational Team Concert 5.4 -2018-07-10
CVE-2018-1408 IBM Rational Team Concert 跨站脚本漏洞 — Rational Team Concert 5.4 -2018-07-10
CVE-2018-1521 IBM Rational Team Concert 跨站脚本漏洞 — Rational Team Concert 5.4 -2018-07-10
CVE-2018-1548 IBM API Connect 安全漏洞 — API Connect 4.3 -2018-07-09
CVE-2017-1237 多款IBM产品跨站脚本漏洞 — Rational Collaborative Lifecycle Management 5.4 -2018-07-06
CVE-2017-1238 IBM Rational Quality Manager 跨站脚本漏洞 — Rational Quality Manager 5.4 -2018-07-06
CVE-2017-1239 IBM Rational Quality Manager 安全漏洞 — Rational Quality Manager 5.3 -2018-07-06
CVE-2017-1242 IBM Rational Quality Manager 安全漏洞 — Rational Quality Manager 5.4 -2018-07-06
CVE-2017-1248 IBM Rational Quality Manager 安全漏洞 — Rational Quality Manager 5.4 -2018-07-06
CVE-2017-1329 IBM Rational Quality Manager 安全漏洞 — Rational Quality Manager 5.4 -2018-07-06
CVE-2017-1488 多款IBM产品安全漏洞 — Rational Engineering Lifecycle Manager 5.3 -2018-07-06
CVE-2017-1509 IBM Jazz Foundation 安全漏洞 — Rational Rhapsody Design Manager 4.3 -2018-07-06
CVE-2017-1559 多款IBM Rational产品安全漏洞 — Rational Rhapsody Design Manager 4.3 -2018-07-06
CVE-2017-1795 IBM WebSphere MQ Managed File Transfer 安全漏洞 — WebSphere MQ 5.5 -2018-07-06
CVE-2018-1494 IBM DOORS Next Generation 跨站脚本漏洞 — Rational DOORS Next Generation 5.4 -2018-07-06
CVE-2018-1542 IBM FileNet Content Manager和Content Foundation Administration Console for Content Platform Engine 安全漏洞 — FileNet P8 Platform 7.1 -2018-07-06
CVE-2018-1546 IBM API Connect information disclosure — API Connect 5.9 Medium2018-07-06
CVE-2018-1555 IBM FileNet Content Manager 跨站脚本漏洞 — FileNet P8 Platform 5.4 -2018-07-06
CVE-2018-1556 IBM FileNet Content Manager 跨站脚本漏洞 — FileNet P8 Platform 5.4 -2018-07-06
CVE-2018-1621 IBM WebSphere Application Server 安全漏洞 — WebSphere Application Server 7.8 -2018-07-06
CVE-2018-1676 IBM Planning Analytics 跨站脚本漏洞 — Planning Analytics Local 5.4 -2018-07-06
CVE-2017-1250 IBM Rational Quality Manager和Rational Collaborative Lifecycle Management 跨站脚本漏洞 — Rational Collaborative Lifecycle Management 5.4 -2018-07-03
CVE-2017-1275 IBM Rational Quality Manager和Rational Collaborative Lifecycle Management 跨站脚本漏洞 — Rational Collaborative Lifecycle Management 5.4 -2018-07-03
CVE-2017-1277 IBM Rational Quality Manager和Rational Collaborative Lifecycle Management 跨站脚本漏洞 — Rational Collaborative Lifecycle Management 5.4 -2018-07-03
CVE-2017-1280 IBM Rational Quality Manager和Rational Collaborative Lifecycle Management 跨站脚本漏洞 — Rational Collaborative Lifecycle Management 5.4 -2018-07-03

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.