Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1110 CNY

100%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4629

Browse all 4629 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IBM operates as a multinational technology and consulting corporation, primarily providing enterprise software, hybrid cloud services, and artificial intelligence solutions. Its extensive portfolio, including the Red Hat OpenShift platform and Watson AI suite, creates a broad attack surface that has historically been associated with Remote Code Execution (RCE) vulnerabilities, particularly within web application frameworks and middleware. Cross-site scripting (XSS) and privilege escalation flaws also frequently appear in its legacy enterprise applications and containerized environments. While the company maintains robust security protocols, past incidents have included data breaches affecting customer information and supply chain compromises. The high volume of recorded Common Vulnerabilities and Exposures (CVEs) reflects the complexity and scale of its global infrastructure rather than inherent systemic failure, though it necessitates rigorous patch management and continuous monitoring for enterprise clients relying on its diverse technological stack.

Top products by IBM: DB2 for Linux, UNIX and Windows InfoSphere Information Server Sterling B2B Integrator WebSphere Application Server Security Guardium QRadar SIEM Cognos Analytics MQ Maximo Asset Management API Connect Rational Quality Manager Rational Collaborative Lifecycle Management Security Key Lifecycle Manager i AIX Spectrum Protect Plus Robotic Process Automation Spectrum Scale UrbanCode Deploy Cognos Controller Aspera Faspex Sterling File Gateway Rational DOORS Next Generation Security Identity Governance and Intelligence Cloud Pak for Security Cloud Pak System Concert Financial Transaction Manager Content Navigator Jazz Reporting Service
CVE IDTitleCVSSSeverityPublished
CVE-2018-1425 IBM Security Guardium Big Data Intelligence(SonarG)安全漏洞 — Security Guardium Big Data Intelligence 7.5 -2018-02-27
CVE-2017-1774 IBM Security Guardium Big Data Intelligence(SonarG)信息泄露漏洞 — Security Guardium Big Data Intelligence 5.3 -2018-02-26
CVE-2018-1377 IBM Security Guardium Big Data Intelligence(SonarG)安全漏洞 — Security Guardium Big Data Intelligence 7.8 -2018-02-26
CVE-2018-1391 IBM Financial Transaction Manager for ACH Services 安全漏洞 — Financial Transaction Manager 6.5 -2018-02-22
CVE-2018-1392 IBM Financial Transaction Manager for ACH Services 输入验证漏洞 — Financial Transaction Manager 4.3 -2018-02-22
CVE-2018-1414 IBM Maximo Asset Management和Maximo Asset Management Essentails SQL注入漏洞 — Maximo Asset Management 8.8 -2018-02-22
CVE-2018-1415 IBM Maximo Asset Management 跨站脚本漏洞 — Maximo Asset Management 5.4 -2018-02-22
CVE-2018-1417 IBM SDK, Java Technology Edition 权限许可和访问控制问题漏洞 — SDK, Java Technology Edition 9.8 -2018-02-22
CVE-2017-1462 IBM Rhapsody Design Manager 跨站脚本漏洞 — Rational Rhapsody Design Manager 5.4 -2018-02-21
CVE-2017-1604 IBM Maximo Anywhere 跨站脚本漏洞 — Maximo Anywhere 5.4 -2018-02-21
CVE-2017-1758 多款IBM产品安全漏洞 — Control Center 7.1 -2018-02-21
CVE-2018-1409 IBM Notes Diagnostics 权限许可和访问控制问题漏洞 — Client Application Access 7.8 -2018-02-19
CVE-2018-1410 IBM Notes Diagnostics 权限许可和访问控制问题漏洞 — Client Application Access 7.8 -2018-02-19
CVE-2018-1411 IBM Notes Diagnostics 权限许可和访问控制问题漏洞 — Client Application Access 7.8 -2018-02-19
CVE-2017-1499 IBM Maximo Asset Management Essentials和Maximo Asset Management 安全漏洞 — Maximo Asset Management 9.8 -2018-02-14
CVE-2017-1682 IBM Connections 跨站脚本漏洞 — Connections 5.4 -2018-02-14
CVE-2017-1711 IBM iNotes 权限许可和访问控制漏洞 — Client Application Access 7.8 -2018-02-13
CVE-2017-1714 IBM Client Application Access和IBM Notes 权限许可和访问控制问题漏洞 — Client Application Access 6.7 -2018-02-13
CVE-2017-1720 IBM Client Application Access和IBM Notes 权限许可和访问控制漏洞 — Client Application Access 7.8 -2018-02-13
CVE-2018-1383 IBM AIX 安全漏洞 — AIX 9.1 -2018-02-13
CVE-2017-1761 IBM WebSphere Portal 跨站脚本漏洞 — WebSphere Portal 6.1 -2018-02-09
CVE-2018-1368 IBM Security Guardium Database Activity Monitor 安全漏洞 — Security Guardium 4.4 -2018-02-09
CVE-2018-1401 IBM WebSphere Portal 跨站脚本漏洞 — WebSphere Portal 6.1 -2018-02-09
CVE-2017-1692 IBM AIX 安全漏洞 — AIX 7.8 -2018-02-07
CVE-2017-1785 IBM API Connect 安全漏洞 — API Connect 4.3 -2018-02-07
CVE-2018-1366 IBM Content Navigator 安全漏洞 — Content Navigator 7.8 -2018-02-07
CVE-2018-1382 IBM API Connect 跨站脚本漏洞 — API Connect 5.4 -2018-02-07
CVE-2018-1388 IBM WebSphere MQ GSKit 安全漏洞 — WebSphere MQ 5.3 -2018-02-07
CVE-2017-1233 IBM Remote Control 安全漏洞 — BigFix Remote Control 7.8 -2018-01-31
CVE-2017-1773 IBM DataPower Gateways 安全漏洞 — DataPower Gateways 4.0 -2018-01-31

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.