目標達成 すべての支援者に感謝 — 100%達成しました!

目標: 1000 CNY · 調達済み: 1000 CNY

100.0%
コーヒーを一杯おごる

IBM 厂商漏洞列表 / CVE 中文分析 4629

IBM 厂商相关 4629 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。

IBM 是全球领先的科技企业,核心业务涵盖混合云、人工智能及企业级软件服务。其软件生态庞大,历史漏洞多集中于远程代码执行、身份验证绕过及跨站脚本攻击,常因复杂配置或第三方组件引入风险。值得关注的是,IBM 定期发布安全公告并强化供应链审查,但部分遗留系统仍面临长期维护挑战。截至最新统计,已收录 4629 条 CVE,反映其广泛的市场渗透率与持续的安全审计需求。

上位製品 IBM: DB2 for Linux, UNIX and Windows InfoSphere Information Server Sterling B2B Integrator WebSphere Application Server Security Guardium QRadar SIEM Cognos Analytics MQ Maximo Asset Management API Connect Rational Quality Manager Rational Collaborative Lifecycle Management Security Key Lifecycle Manager i AIX Spectrum Protect Plus Robotic Process Automation Spectrum Scale UrbanCode Deploy Cognos Controller Aspera Faspex Sterling File Gateway Rational DOORS Next Generation Security Identity Governance and Intelligence Cloud Pak for Security Cloud Pak System Concert Financial Transaction Manager Content Navigator Jazz Reporting Service
CVE IDタイトルCVSS深刻度公開日
CVE-2025-13044 Multiple Vulnerabilities in IBM Concert Software — ConcertCWE-340 6.2 Medium2026-04-07
CVE-2026-1243 IBM Content Navigator is affected by , a Cross-Site Scripting (XSS) vulnerability — Content Navigator 5.4 Medium2026-04-02
CVE-2025-66487 Multiple vulnerabilities have been addressed in IBM Aspera Shares — Aspera SharesCWE-770 2.7 Low2026-04-01
CVE-2025-66486 Multiple vulnerabilities have been addressed in IBM Aspera Shares — Aspera SharesCWE-80 4.8 Medium2026-04-01
CVE-2025-66485 Multiple vulnerabilities have been addressed in IBM Aspera Shares — Aspera SharesCWE-644 5.4 Medium2026-04-01
CVE-2025-66484 Multiple vulnerabilities have been addressed in IBM Aspera Shares — Aspera Shares 5.5 Medium2026-04-01
CVE-2025-66483 Multiple vulnerabilities have been addressed in IBM Aspera Shares — Aspera SharesCWE-613 6.3 Medium2026-04-01
CVE-2025-36375 IBM DataPower Gateway vulnerable to CSRF — DataPower Gateway 10.6CDCWE-352 6.5 Medium2026-04-01
CVE-2026-2475 Security Vulnerabilities have been found in IBM Verify Identity Access and IBM Security Verify Access — Verify Identity Access ContainerCWE-601 3.1 Low2026-04-01
CVE-2026-4820 IBM Maximo Application Suite was vulnerable to because Cookie ltpatoken2_<workspace_name> was not set with secure flag — Maximo Application SuiteCWE-614 4.3 Medium2026-04-01
CVE-2025-36373 Incorrect administrative access control in IBM DataPower Gateway — DataPower Gateway 10.6CDCWE-497 4.1 Medium2026-04-01
CVE-2025-13916 Multiple vulnerabilities have been addressed in IBM Aspera Shares — Aspera SharesCWE-327 5.9 Medium2026-04-01
CVE-2026-1491 Security Vulnerabilities have been found in IBM Verify Identity Access and IBM Security Verify Access — Verify Identity Access ContainerCWE-444 5.3 Medium2026-04-01
CVE-2026-2862 Security Vulnerabilities have been found in IBM Verify Identity Access and IBM Security Verify Access — Verify Identity Access ContainerCWE-444 5.3 Medium2026-04-01
CVE-2026-1345 Security Vulnerabilities have been found in IBM Verify Identity Access and IBM Security Verify Access — Verify Identity Access ContainerCWE-78 7.3 High2026-04-01
CVE-2026-4101 Security Vulnerabilities have been found in IBM Verify Identity Access and IBM Security Verify Access — Verify Identity Access ContainerCWE-287 8.1 High2026-04-01
CVE-2026-4364 Security Vulnerabilities have been found in IBM Verify Identity Access and IBM Security Verify Access — Verify Identity Access ContainerCWE-79 5.4 Medium2026-04-01
CVE-2025-13855 IBM Storage Protect Server is affected by a vulnerability that could allow authenticated users to access administrative metadata through the JSON-RPC endpoint . — Storage Protect ServerCWE-89 7.6 High2026-04-01
CVE-2025-36187 Multiple Security vulnerabilities affecting IBM Knowledge Catalog Standard Cartridge — Knowledge Catalog Standard CartridgeCWE-532 4.4 Medium2026-03-25
CVE-2025-14684 IBM Maximo Application Suite - Monitor Component uses Log Forging which is vulnerable to . — Maximo Application Suite - Monitor ComponentCWE-117 4.0 Medium2026-03-25
CVE-2025-14807 IBM InfoSphere Information Server is vulnerable to HTTP header injection — InfoSphere Information ServerCWE-644 6.5 Medium2026-03-25
CVE-2026-1015 IBM InfoSphere Information Server is vulnerable to server-side request forgery — InfoSphere Information ServerCWE-918 5.4 Medium2026-03-25
CVE-2026-1014 IBM InfoSphere Information Server is vulnerable due to disclosure of sensitive information — InfoSphere Information ServerCWE-319 6.5 Medium2026-03-25
CVE-2026-2483 IBM InfoSphere Information Server Cross-Site Scripting — InfoSphere Information ServerCWE-79 5.4 Medium2026-03-25
CVE-2025-64648 Multiple Vulnerabilities in IBM Concert Software — ConcertCWE-319 5.9 Medium2026-03-25
CVE-2025-64647 Multiple Vulnerabilities in IBM Concert Software — ConcertCWE-1240 5.9 Medium2026-03-25
CVE-2026-2484 IBM InfoSphere Information Server Information Disclosure — InfoSphere Information ServerCWE-209 4.3 Medium2026-03-25
CVE-2025-64646 Multiple Vulnerabilities in IBM Concert Software — ConcertCWE-14 6.2 Medium2026-03-25
CVE-2025-36440 Multiple Vulnerabilities in IBM Concert Software — ConcertCWE-522 5.1 Medium2026-03-25
CVE-2025-36438 Multiple Vulnerabilities in IBM Concert Software — ConcertCWE-923 5.1 Medium2026-03-25

本页汇总了 IBM 厂商截至目前公开的全部 4629 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。