Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4629

Browse all 4629 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IBM operates as a multinational technology and consulting corporation, primarily providing enterprise software, hybrid cloud services, and artificial intelligence solutions. Its extensive portfolio, including the Red Hat OpenShift platform and Watson AI suite, creates a broad attack surface that has historically been associated with Remote Code Execution (RCE) vulnerabilities, particularly within web application frameworks and middleware. Cross-site scripting (XSS) and privilege escalation flaws also frequently appear in its legacy enterprise applications and containerized environments. While the company maintains robust security protocols, past incidents have included data breaches affecting customer information and supply chain compromises. The high volume of recorded Common Vulnerabilities and Exposures (CVEs) reflects the complexity and scale of its global infrastructure rather than inherent systemic failure, though it necessitates rigorous patch management and continuous monitoring for enterprise clients relying on its diverse technological stack.

Top products by IBM: DB2 for Linux, UNIX and Windows InfoSphere Information Server Sterling B2B Integrator WebSphere Application Server Security Guardium QRadar SIEM Cognos Analytics MQ Maximo Asset Management API Connect Rational Quality Manager Rational Collaborative Lifecycle Management Security Key Lifecycle Manager i AIX Spectrum Protect Plus Robotic Process Automation Spectrum Scale UrbanCode Deploy Cognos Controller Aspera Faspex Sterling File Gateway Rational DOORS Next Generation Security Identity Governance and Intelligence Cloud Pak for Security Cloud Pak System Concert Financial Transaction Manager Content Navigator Jazz Reporting Service
CVE IDTitleCVSSSeverityPublished
CVE-2017-1569 IBM WebSphere Commerce Marketing Espots 安全漏洞 — WebSphere Commerce Enterprise 7.5 -2017-10-02
CVE-2017-1407 IBM Security Identity Manager Virtual Appliance 命令注入漏洞 — Security Identity Manager 8.8 -2017-09-27
CVE-2017-1483 IBM Security Identity Manager 安全漏洞 — Security Identity Manager 6.5 -2017-09-27
CVE-2017-1577 IBM WebSphere Portal 路径遍历漏洞 — WebSphere Portal 7.5 -2017-09-27
CVE-2017-1591 IBM WebSphere DataPower Appliances 跨站脚本漏洞 — DataPower Gateways 5.4 -2017-09-27
CVE-2017-1425 IBM Business Process Manager 跨站脚本漏洞 — Business Process Manager Advanced 5.4 -2017-09-26
CVE-2017-1527 IBM Business Process Manager 安全漏洞 — Business Process Manager Advanced 7.1 -2017-09-26
CVE-2017-1530 IBM Business Process Manager 跨站脚本漏洞 — Business Process Manager Advanced 5.4 -2017-09-26
CVE-2017-1531 IBM Business Process Manager 跨站脚本漏洞 — Business Process Manager Advanced 5.4 -2017-09-26
CVE-2017-1539 IBM Business Process Manager 权限许可和访问控制问题漏洞 — Business Process Manager Advanced 8.8 -2017-09-26
CVE-2017-1235 IBM WebSphere MQ 安全漏洞 — MQ 6.5 -2017-09-25
CVE-2017-1362 IBM Security Identity Manager Adapters 信任管理问题漏洞 — Security Identity Manager 7.1 -2017-09-25
CVE-2017-1424 IBM Business Process Manager 跨站脚本漏洞 — Business Process Manager Advanced 5.4 -2017-09-25
CVE-2017-1551 IBM API Connect 安全漏洞 — API Connect 6.1 -2017-09-25
CVE-2017-1555 IBM API Connect 安全漏洞 — API Connect 4.3 -2017-09-25
CVE-2017-1490 IBM Lifecycle Query Engine of Jazz Reporting Service 安全漏洞 — Jazz Reporting Service 5.3 -2017-09-14
CVE-2017-1508 IBM Informix Dynamic Server for Linux 权限许可和访问控制问题漏洞 — Informix Servers 6.7 -2017-09-13
CVE-2017-1556 IBM API Connect 安全漏洞 — API Connect 6.5 -2017-09-13
CVE-2017-1162 IBM QRadar 信息泄露漏洞 — Security QRadar SIEM 5.3 -2017-09-12
CVE-2017-1352 IBM Maximo Asset Management 安全漏洞 — Maximo Asset Management 7.6 -2017-09-12
CVE-2017-1434 IBM DB2和DB2 Connect Server for Linux、UNIX和Windows 安全漏洞 — DB2 for Linux, UNIX and Windows 4.7 -2017-09-12
CVE-2017-1438 IBM DB2和DB2 Connect Server for Linux、UNIX和Windows 权限许可和访问控制问题漏洞 — DB2 for Linux, UNIX and Windows 6.7 -2017-09-12
CVE-2017-1439 IBM DB2和DB2 Connect Server for Linux、UNIX和Windows 权限许可和访问控制问题漏洞 — DB2 for Linux, UNIX and Windows 6.7 -2017-09-12
CVE-2017-1451 IBM DB2和DB2 Connect Server for Linux、UNIX和Windows 权限许可和访问控制问题漏洞 — DB2 for Linux, UNIX and Windows 6.7 -2017-09-12
CVE-2017-1452 IBM DB2和DB2 Connect Server for Linux、UNIX和Windows 权限许可和访问控制问题漏洞 — DB2 for Linux, UNIX and Windows 7.8 -2017-09-12
CVE-2017-1519 IBM DB2 安全漏洞 — DB2 for Linux, UNIX and Windows 5.9 -2017-09-12
CVE-2017-1520 IBM DB2 安全漏洞 — DB2 for Linux, UNIX and Windows 7.7 -2017-09-12
CVE-2017-1097 IBM Emptoris Strategic Supply Management Platform 跨站请求伪造漏洞 — Emptoris Strategic Supply Management 8.8 -2017-09-05
CVE-2017-1129 IBM Notes 安全漏洞 — Lotus Expeditor 6.5 -2017-09-05
CVE-2017-1130 IBM Notes 安全漏洞 — Notes 6.5 -2017-09-05

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.