Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4629

Browse all 4629 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IBM operates as a multinational technology and consulting corporation, primarily providing enterprise software, hybrid cloud services, and artificial intelligence solutions. Its extensive portfolio, including the Red Hat OpenShift platform and Watson AI suite, creates a broad attack surface that has historically been associated with Remote Code Execution (RCE) vulnerabilities, particularly within web application frameworks and middleware. Cross-site scripting (XSS) and privilege escalation flaws also frequently appear in its legacy enterprise applications and containerized environments. While the company maintains robust security protocols, past incidents have included data breaches affecting customer information and supply chain compromises. The high volume of recorded Common Vulnerabilities and Exposures (CVEs) reflects the complexity and scale of its global infrastructure rather than inherent systemic failure, though it necessitates rigorous patch management and continuous monitoring for enterprise clients relying on its diverse technological stack.

Top products by IBM: DB2 for Linux, UNIX and Windows InfoSphere Information Server Sterling B2B Integrator WebSphere Application Server Security Guardium QRadar SIEM Cognos Analytics MQ Maximo Asset Management API Connect Rational Quality Manager Rational Collaborative Lifecycle Management Security Key Lifecycle Manager i AIX Spectrum Protect Plus Robotic Process Automation Spectrum Scale UrbanCode Deploy Cognos Controller Aspera Faspex Sterling File Gateway Rational DOORS Next Generation Security Identity Governance and Intelligence Cloud Pak for Security Cloud Pak System Concert Financial Transaction Manager Content Navigator Jazz Reporting Service
CVE IDTitleCVSSSeverityPublished
CVE-2022-40608 IBM Spectrum Protect Plus 路径遍历漏洞 — Spectrum Protect Plus 7.5 -2022-09-19
CVE-2022-40234 IBM Spectrum Protect Plus 安全漏洞 — Spectrum Protect Plus 5.9 -2022-09-19
CVE-2021-38924 IBM Maximo Asset Management 安全漏洞 — Maximo Asset Management 5.3 -2022-09-14
CVE-2022-36768 IBM AIX 命令注入漏洞 — AIX 7.8 -2022-09-13
CVE-2022-35637 IBM DB2 安全漏洞 — DB2 for Linux, UNIX and Windows 6.5 -2022-09-13
CVE-2022-34356 IBM AIX 安全漏洞 — VIOS 7.8 -2022-09-13
CVE-2022-34336 IBM WebSphere Application Server 跨站脚本漏洞 — WebSphere Application Server 5.4 -2022-09-13
CVE-2022-22483 IBM DB2 安全漏洞 — DB2 for Linux, UNIX and Windows 6.5 -2022-09-13
CVE-2022-22330 IBM Control Desk 信息泄露漏洞 — Control Desk 5.3 -2022-09-13
CVE-2022-22329 IBM Control Desk 安全漏洞 — Control Desk 4.3 -2022-09-13
CVE-2022-34165 IBM WebSphere Application Server 注入漏洞 — WebSphere Application Server 5.4 -2022-09-09
CVE-2022-22314 IBM Planning Analytics 安全漏洞 — Planning Analytics Workspace 3.3 -2022-09-08
CVE-2022-36773 IBM Cognos Analytics 代码问题漏洞 — Cognos Analytics 8.2 -2022-09-01
CVE-2022-30614 IBM Cognos Analytics 资源管理错误漏洞 — Cognos Analytics 7.5 -2022-09-01
CVE-2021-39045 IBM Cognos Analytics 安全漏洞 — Cognos Analytics 5.5 -2022-09-01
CVE-2021-39009 IBM Cognos Analytics 安全漏洞 — Cognos Analytics 5.5 -2022-09-01
CVE-2021-29823 IBM Cognos Analytics 跨站请求伪造漏洞 — Cognos Analytics 8.8 -2022-09-01
CVE-2021-20468 IBM Cognos Analytics 跨站请求伪造漏洞 — Cognos Analytics 8.1 -2022-09-01
CVE-2020-4301 IBM Cognos Analytics 跨站请求伪造漏洞 — Cognos Analytics 8.1 -2022-09-01
CVE-2021-29864 IBM Security Identity Manager 输入验证错误漏洞 — Security Identity Manager 6.1 -2022-08-30
CVE-2021-38934 IBM Engineering Test Management 跨站脚本漏洞 — Engineering Test Management 5.4 -2022-08-29
CVE-2022-35714 IBM Maximo Asset Management 跨站脚本漏洞 — Maximo Asset Management 5.4 -2022-08-26
CVE-2022-31773 IBM DataPower Gateway 跨站请求伪造漏洞 — DataPower Gateway 8.8 -2022-08-26
CVE-2021-29891 IBM OPENBMC OP910和OP940 代码问题漏洞 — Power 9 AC922 4.9 -2022-08-22
CVE-2022-22489 IBM MQ 代码问题漏洞 — MQ 7.1 -2022-08-19
CVE-2022-22455 IBM Security Verify Governance Identity Manager 安全漏洞 — Security Verify Governance 9.8 -2022-08-17
CVE-2021-39087 IBM Sterling B2B Integrator 安全漏洞 — Sterling B2B Integrator 6.5 -2022-08-16
CVE-2021-39086 IBM Sterling File Gateway 安全漏洞 — Sterling File Gateway 5.3 -2022-08-16
CVE-2021-39085 IBM Sterling B2B Integrator SQL注入漏洞 — Sterling B2B Integrator 8.8 -2022-08-16
CVE-2021-39035 IBM Sterling B2B Integrator 跨站脚本漏洞 — Sterling B2B Integrator 5.4 -2022-08-16

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.