Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4629

Browse all 4629 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IBM operates as a multinational technology and consulting corporation, primarily providing enterprise software, hybrid cloud services, and artificial intelligence solutions. Its extensive portfolio, including the Red Hat OpenShift platform and Watson AI suite, creates a broad attack surface that has historically been associated with Remote Code Execution (RCE) vulnerabilities, particularly within web application frameworks and middleware. Cross-site scripting (XSS) and privilege escalation flaws also frequently appear in its legacy enterprise applications and containerized environments. While the company maintains robust security protocols, past incidents have included data breaches affecting customer information and supply chain compromises. The high volume of recorded Common Vulnerabilities and Exposures (CVEs) reflects the complexity and scale of its global infrastructure rather than inherent systemic failure, though it necessitates rigorous patch management and continuous monitoring for enterprise clients relying on its diverse technological stack.

Top products by IBM: DB2 for Linux, UNIX and Windows InfoSphere Information Server Sterling B2B Integrator WebSphere Application Server Security Guardium QRadar SIEM Cognos Analytics MQ Maximo Asset Management API Connect Rational Quality Manager Rational Collaborative Lifecycle Management Security Key Lifecycle Manager i AIX Spectrum Protect Plus Robotic Process Automation Spectrum Scale UrbanCode Deploy Cognos Controller Aspera Faspex Sterling File Gateway Rational DOORS Next Generation Security Identity Governance and Intelligence Cloud Pak for Security Cloud Pak System Concert Financial Transaction Manager Content Navigator Jazz Reporting Service
CVE IDTitleCVSSSeverityPublished
CVE-2017-1106 IBM Curam Social Program Management 跨站脚本漏洞 — Cram Social Program Management 5.4 -2017-06-28
CVE-2016-6083 IBM Tivoli Monitoring SOAP 信息泄露漏洞 — Tivoli Monitoring V6 5.3 -2017-06-27
CVE-2016-9738 IBM QRadar SIEM 安全漏洞 — Security QRadar SIEM 7.5 -2017-06-27
CVE-2016-9972 IBM QRadar SIEM 安全漏洞 — Security QRadar SIEM 5.9 -2017-06-27
CVE-2017-1105 IBM DB2 for Linux、UNIX和Windows 缓冲区错误漏洞 — DB2 for Linux, UNIX and Windows 7.1 -2017-06-27
CVE-2017-1234 IBM QRadar 跨站脚本漏洞 — Security QRadar SIEM 6.1 -2017-06-27
CVE-2017-1297 IBM DB2 缓冲区错误漏洞 — DB2 for Linux, UNIX and Windows 7.8 -2017-06-27
CVE-2017-1322 IBM API Connect 安全漏洞 — API Connect 7.1 -2017-06-27
CVE-2017-1328 IBM API Connect 安全漏洞 — API Connect 9.8 -2017-06-27
CVE-2016-5893 IBM Sterling B2B Integrator 安全漏洞 — Sterling B2B Integrator 5.5 -2017-06-23
CVE-2017-1131 IBM Sterling B2B Integrator 安全漏洞 — Sterling B2B Integrator 6.5 -2017-06-23
CVE-2017-1132 IBM Sterling B2B Integrator 跨站脚本漏洞 — Sterling B2B Integrator 5.4 -2017-06-23
CVE-2017-1193 IBM Sterling B2B Integrator 信息泄露漏洞 — Sterling B2B Integrator 6.5 -2017-06-23
CVE-2017-1302 IBM Sterling B2B Integrator 信息泄露漏洞 — Sterling B2B Integrator 5.5 -2017-06-23
CVE-2017-1347 IBM Sterling B2B Integrator SQL注入漏洞 — Sterling B2B Integrator 8.8 -2017-06-23
CVE-2017-1348 IBM Sterling B2B Integrator 跨站脚本漏洞 — Sterling B2B Integrator 5.4 -2017-06-23
CVE-2017-1349 IBM Sterling B2B Integrator 安全漏洞 — Sterling B2B Integrator 5.5 -2017-06-23
CVE-2016-9747 IBM Rational Collaborative Lifecycle Management和Rational Engineering Lifecycle Manager 跨站脚本漏洞 — Rational Engineering Lifecycle Manager 5.4 -2017-06-22
CVE-2016-9982 IBM Sterling B2B Integrator 安全漏洞 — Sterling B2B Integrator 6.5 -2017-06-22
CVE-2016-9983 IBM Sterling B2B Integrator 安全漏洞 — Sterling B2B Integrator 5.3 -2017-06-22
CVE-2017-1326 IBM Sterling B2B Integrator 安全漏洞 — Sterling B2B Integrator 6.5 -2017-06-22
CVE-2017-1117 IBM MQ 安全漏洞 — MQ 5.3 -2017-06-21
CVE-2017-1304 IBM Elastic Storage Server Spectrum Scale 安全漏洞 — Elastic Storage Server 7.6 -2017-06-21
CVE-2017-1197 IBM BigFix Compliance Analytics 信任管理问题漏洞 — BigFix Compliance Analytics 9.1 -2017-06-15
CVE-2017-1379 IBM API Connect 信息泄露漏洞 — API Connect 7.5 -2017-06-15
CVE-2016-9973 多款IBM产品Jazz Foundation 跨站脚本漏洞 — Rational Collaborative Lifecycle Management 5.4 -2017-06-13
CVE-2016-9984 IBM Maximo Asset Management 权限许可和访问控制漏洞 — Maximo Asset Management 8.8 -2017-06-13
CVE-2017-1099 多款IBM产品中的Jazz Foundation 信息泄露漏洞 — Rational Collaborative Lifecycle Management 4.3 -2017-06-13
CVE-2017-1100 IBM Rational Collaborative Lifecycle Management和Rational Quality Manager 跨站脚本漏洞 — Rational Quality Manager 5.4 -2017-06-13
CVE-2017-1101 IBM Rational Collaborative Lifecycle Management和Rational Quality Manager 跨站脚本漏洞 — Rational Quality Manager 5.4 -2017-06-13

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.