Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4629

Browse all 4629 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IBM operates as a multinational technology and consulting corporation, primarily providing enterprise software, hybrid cloud services, and artificial intelligence solutions. Its extensive portfolio, including the Red Hat OpenShift platform and Watson AI suite, creates a broad attack surface that has historically been associated with Remote Code Execution (RCE) vulnerabilities, particularly within web application frameworks and middleware. Cross-site scripting (XSS) and privilege escalation flaws also frequently appear in its legacy enterprise applications and containerized environments. While the company maintains robust security protocols, past incidents have included data breaches affecting customer information and supply chain compromises. The high volume of recorded Common Vulnerabilities and Exposures (CVEs) reflects the complexity and scale of its global infrastructure rather than inherent systemic failure, though it necessitates rigorous patch management and continuous monitoring for enterprise clients relying on its diverse technological stack.

Top products by IBM: DB2 for Linux, UNIX and Windows InfoSphere Information Server Sterling B2B Integrator WebSphere Application Server Security Guardium QRadar SIEM Cognos Analytics MQ Maximo Asset Management API Connect Rational Quality Manager Rational Collaborative Lifecycle Management Security Key Lifecycle Manager i AIX Spectrum Protect Plus Robotic Process Automation Spectrum Scale UrbanCode Deploy Cognos Controller Aspera Faspex Sterling File Gateway Rational DOORS Next Generation Security Identity Governance and Intelligence Cloud Pak for Security Cloud Pak System Concert Financial Transaction Manager Content Navigator Jazz Reporting Service
CVE IDTitleCVSSSeverityPublished
CVE-2017-1331 IBM Content Navigator 跨站脚本漏洞 — Content Navigator 5.4 -2017-08-04
CVE-2017-1199 IBM InfoSphere Master Data Management Server 跨站脚本漏洞 — InfoSphere Master Data Management 5.4 -2017-08-03
CVE-2017-1327 IBM iNotes 跨站脚本漏洞 — iNotes 6.1 -2017-08-03
CVE-2017-1504 IBM WebSphere Application Server 信息泄露漏洞 — WebSphere Application Server 7.5 -2017-08-03
CVE-2016-9981 IBM Security AppScan Enterprise 会话固定漏洞 — Security AppScan Enterprise 7.0 -2017-08-02
CVE-2017-1118 IBM WebSphere MQ Internet Pass-Thru 安全漏洞 — WebSphere MQ 7.5 -2017-08-02
CVE-2017-1383 IBM InfoSphere Information Server 安全漏洞 — InfoSphere Information Server 8.2 -2017-08-02
CVE-2017-1467 IBM InfoSphere Information Server 权限许可和访问控制问题漏洞 — InfoSphere Information Server 8.1 -2017-08-02
CVE-2017-1468 IBM InfoSphere Information Server 权限许可和访问控制问题漏洞 — InfoSphere Information Server 7.8 -2017-08-02
CVE-2017-1495 IBM InfoSphere Information Server 缓冲区错误漏洞 — InfoSphere Information Server 4.9 -2017-08-02
CVE-2017-1500 IBM Worklight 跨站脚本漏洞 — Worklight 6.1 -2017-08-01
CVE-2016-9714 IBM InfoSphere Master Data Management 跨站请求伪造漏洞 — InfoSphere Master Data Management 8.8 -2017-07-31
CVE-2016-9715 IBM InfoSphere Master Data Management 跨站脚本漏洞 — InfoSphere Master Data Management 5.4 -2017-07-31
CVE-2016-9716 IBM InfoSphere Master Data Management 跨站请求伪造漏洞 — InfoSphere Master Data Management 8.8 -2017-07-31
CVE-2016-9717 IBM InfoSphere Master Data Management 安全漏洞 — InfoSphere Master Data Management 6.5 -2017-07-31
CVE-2016-9718 IBM InfoSphere Master Data Management 跨站脚本漏洞 — InfoSphere Master Data Management 5.4 -2017-07-31
CVE-2016-9719 IBM InfoSphere Master Data Management 安全漏洞 — InfoSphere Master Data Management 5.4 -2017-07-31
CVE-2017-1227 IBM BigFix Platform Tivoli Endpoint Manager 安全漏洞 — BigFix Platform 7.5 -2017-07-31
CVE-2017-1303 IBM WebSphere Portal 跨站脚本漏洞 — WebSphere Portal 6.1 -2017-07-31
CVE-2017-1332 IBM iNotes 跨站脚本漏洞 — iNotes 6.1 -2017-07-31
CVE-2017-1370 IBM Jazz Reporting Service 信息泄露漏洞 — Jazz Reporting Service 6.5 -2017-07-31
CVE-2017-1386 IBM API Connect和API Management 权限许可和访问控制问题漏洞 — API Connect 5.9 -2017-07-31
CVE-2017-1460 IBM i OSPF 安全漏洞 — i 5.3 -2017-07-31
CVE-2017-1496 IBM Sterling B2B Integrator Standard Edition 跨站脚本漏洞 — Sterling B2B Integrator 5.4 -2017-07-31
CVE-2016-6118 IBM Emptoris Supplier Lifecycle Management 跨站脚本漏洞 — Emptoris Supplier Lifecycle Management 5.4 -2017-07-24
CVE-2016-8975 IBM Rhapsody Design Manager 跨站脚本漏洞 — Rational Rhapsody Design Manager 5.4 -2017-07-24
CVE-2017-1245 IBM Rhapsody Design Manager 跨站脚本漏洞 — Rational Rhapsody Design Manager 5.4 -2017-07-24
CVE-2017-1249 IBM Rhapsody Design Manager 跨站脚本漏洞 — Rational Rhapsody Design Manager 5.4 -2017-07-24
CVE-2017-1287 IBM Rhapsody Design Manager 安全漏洞 — Rational Rhapsody Design Manager 5.4 -2017-07-24
CVE-2017-1380 IBM WebSphere Application Server 跨站脚本漏洞 — WebSphere Application Server 5.4 -2017-07-24

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.