Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4629

Browse all 4629 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IBM operates as a multinational technology and consulting corporation, primarily providing enterprise software, hybrid cloud services, and artificial intelligence solutions. Its extensive portfolio, including the Red Hat OpenShift platform and Watson AI suite, creates a broad attack surface that has historically been associated with Remote Code Execution (RCE) vulnerabilities, particularly within web application frameworks and middleware. Cross-site scripting (XSS) and privilege escalation flaws also frequently appear in its legacy enterprise applications and containerized environments. While the company maintains robust security protocols, past incidents have included data breaches affecting customer information and supply chain compromises. The high volume of recorded Common Vulnerabilities and Exposures (CVEs) reflects the complexity and scale of its global infrastructure rather than inherent systemic failure, though it necessitates rigorous patch management and continuous monitoring for enterprise clients relying on its diverse technological stack.

Top products by IBM: DB2 for Linux, UNIX and Windows InfoSphere Information Server Sterling B2B Integrator WebSphere Application Server Security Guardium QRadar SIEM Cognos Analytics MQ Maximo Asset Management API Connect Rational Quality Manager Rational Collaborative Lifecycle Management Security Key Lifecycle Manager i AIX Spectrum Protect Plus Robotic Process Automation Spectrum Scale UrbanCode Deploy Cognos Controller Aspera Faspex Sterling File Gateway Rational DOORS Next Generation Security Identity Governance and Intelligence Cloud Pak for Security Cloud Pak System Concert Financial Transaction Manager Content Navigator Jazz Reporting Service
CVE IDTitleCVSSSeverityPublished
CVE-2016-10503 IBM Sametime Meeting Server 输入验证漏洞 — Sametime 4.3 -2017-08-29
CVE-2016-2959 IBM Sametime Meeting Server 权限许可和访问控制漏洞 — Sametime 2.7 -2017-08-29
CVE-2016-2965 IBM Sametime Meeting Server 跨站请求伪造漏洞 — Sametime 6.5 -2017-08-29
CVE-2016-2969 IBM Sametime Meeting Server 信息泄露漏洞 — Sametime 4.3 -2017-08-29
CVE-2016-2971 IBM Sametime Meeting Server 安全漏洞 — Sametime 5.3 -2017-08-29
CVE-2016-2972 IBM Sametime Meeting Server 信任管理漏洞 — Sametime 7.8 -2017-08-29
CVE-2016-2973 IBM Sametime Meeting Server 跨站脚本漏洞 — Sametime 5.4 -2017-08-29
CVE-2016-2977 IBM Sametime Meeting Server 输入验证漏洞 — Sametime 5.4 -2017-08-29
CVE-2016-2979 IBM Sametime Meeting Server 跨站脚本漏洞 — Sametime 5.4 -2017-08-29
CVE-2016-2970 IBM Sametime Media Server 安全漏洞 — Sametime 4.3 -2017-08-28
CVE-2016-9732 IBM Curam Social Program Management 跨站脚本漏洞 — Cram Social Program Management 5.4 -2017-08-28
CVE-2017-1110 IBM Curam Social Program Management 权限许可和访问控制问题漏洞 — Cram Social Program Management 6.5 -2017-08-28
CVE-2017-1376 IBM Operationas Analytics Predictive Insights 权限许可和访问控制问题漏洞 — Operations Analytics Predictive Insights 9.8 -2017-08-28
CVE-2017-1489 IBM Security Access Manager 安全漏洞 — Security Access Manager for Web 6.1 -2017-08-28
CVE-2017-1422 IBM MaaS360 DTM 信息泄露漏洞 — MaaS360 DTM 4.3 -2017-08-22
CVE-2017-1338 IBM Rational DOORS Next Generation和Rational Requirements Composer 跨站脚本漏洞 — Rational DOORS Next Generation 5.4 -2017-08-18
CVE-2017-1501 IBM WebSphere Application Server 信息泄露漏洞 — WebSphere Application Server 5.9 -2017-08-18
CVE-2016-6021 IBM Emptoris Strategic Supply Management Platform 跨站脚本漏洞 — Emptoris Strategic Supply Management 5.4 -2017-08-14
CVE-2016-6029 IBM Emptoris Strategic Supply Management Platform 安全漏洞 — Emptoris Strategic Supply Management 5.9 -2017-08-14
CVE-2017-1190 IBM Emptoris Strategic Supply Management Platform 安全漏洞 — Emptoris Strategic Supply Management 6.4 -2017-08-14
CVE-2017-1469 IBM InfoSphere Information Server 权限许可和访问控制漏洞 — InfoSphere Information Server 7.8 -2017-08-14
CVE-2017-1168 IBM Rational Engineering Lifecycle Manager 跨站脚本漏洞 — Rational Engineering Lifecycle Manager 5.4 -2017-08-10
CVE-2017-1174 IBM Sterling B2B Integrator Standard Edition SQL注入漏洞 — Sterling B2B Integrator 8.8 -2017-08-10
CVE-2017-1192 IBM Sterling B2B Integrator 安全漏洞 — Sterling B2B Integrator 7.1 -2017-08-10
CVE-2017-1377 IBM Runbook Automation 信息泄露漏洞 — Runbook Automation 4.3 -2017-08-10
CVE-2017-1431 IBM InfoSphere Streams 跨站脚本漏洞 — Streams 5.4 -2017-08-10
CVE-2016-6121 IBM Emptoris Supplier Lifecycle Management 跨站脚本漏洞 — Emptoris Supplier Lifecycle Management 5.4 -2017-08-09
CVE-2016-8949 IBM Emptoris Supplier Lifecycle Management 安全漏洞 — Emptoris Supplier Lifecycle Management 6.1 -2017-08-09
CVE-2017-1357 IBM Maximo Asset Management 安全漏洞 — Maximo Asset Management 4.3 -2017-08-09
CVE-2017-1448 IBM Emptoris Supplier Lifecycle Management 安全漏洞 — Emptoris Supplier Lifecycle Management 6.1 -2017-08-09

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.