Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4629

Browse all 4629 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IBM operates as a multinational technology and consulting corporation, primarily providing enterprise software, hybrid cloud services, and artificial intelligence solutions. Its extensive portfolio, including the Red Hat OpenShift platform and Watson AI suite, creates a broad attack surface that has historically been associated with Remote Code Execution (RCE) vulnerabilities, particularly within web application frameworks and middleware. Cross-site scripting (XSS) and privilege escalation flaws also frequently appear in its legacy enterprise applications and containerized environments. While the company maintains robust security protocols, past incidents have included data breaches affecting customer information and supply chain compromises. The high volume of recorded Common Vulnerabilities and Exposures (CVEs) reflects the complexity and scale of its global infrastructure rather than inherent systemic failure, though it necessitates rigorous patch management and continuous monitoring for enterprise clients relying on its diverse technological stack.

Top products by IBM: DB2 for Linux, UNIX and Windows InfoSphere Information Server Sterling B2B Integrator WebSphere Application Server Security Guardium QRadar SIEM Cognos Analytics MQ Maximo Asset Management API Connect Rational Quality Manager Rational Collaborative Lifecycle Management Security Key Lifecycle Manager i AIX Spectrum Protect Plus Robotic Process Automation Spectrum Scale UrbanCode Deploy Cognos Controller Aspera Faspex Sterling File Gateway Rational DOORS Next Generation Security Identity Governance and Intelligence Cloud Pak for Security Cloud Pak System Concert Financial Transaction Manager Content Navigator Jazz Reporting Service
CVE IDTitleCVSSSeverityPublished
CVE-2022-35284 IBM Security Verify Information Queue 安全漏洞 — Security Verify Information Queue 7.5 -2022-07-25
CVE-2022-22424 IBM QRadar SIEM 信息泄露漏洞 — QRadar SIEM 5.5 -2022-07-20
CVE-2021-38936 IBM QRadar SIEM 信息泄露漏洞 — QRadar SIEM 4.9 -2022-07-20
CVE-2021-29755 IBM QRadar SIEM 信任管理问题漏洞 — QRadar SIEM 7.5 -2022-07-20
CVE-2022-22417 IBM Sterling Partner Engagement Manager 跨站脚本漏洞 — Sterling Partner Engagement Manager on Cloud 5.4 -2022-07-19
CVE-2022-22416 IBM Sterling Partner Engagement Manager 代码问题漏洞 — Sterling Partner Engagement Manager on Cloud 5.4 -2022-07-19
CVE-2022-22360 IBM Sterling Partner Engagement Manager 注入漏洞 — Sterling Partner Engagement Manager 8.8 -2022-07-19
CVE-2022-22359 IBM Sterling Partner Engagement Manager 跨站请求伪造漏洞 — Sterling Partner Engagement Manager on Cloud 8.1 -2022-07-19
CVE-2022-22358 IBM Sterling Partner Engagement Manager 代码问题漏洞 — Sterling Partner Engagement Manager 7.1 -2022-07-19
CVE-2022-22445 IBM PowerVM Hypervisor 权限许可和访问控制问题漏洞 — PowerVM Hypervisor 6.5 -2022-07-18
CVE-2021-38868 IBM Engineering Requirements Quality Assistant 跨站请求伪造漏洞 — Engineering Requirements Quality Assistant On-Premises 8.8 -2022-07-18
CVE-2021-29799 IBM Engineering Requirements Quality Assistant 安全漏洞 — Engineering Requirements Quality Assistant On-Premises 6.5 -2022-07-18
CVE-2021-29790 IBM Engineering Requirements Quality Assistant 跨站脚本漏洞 — Engineering Requirements Quality Assistant On-Premises 5.4 -2022-07-18
CVE-2021-29788 IBM Engineering Requirements Quality Assistant 跨站脚本漏洞 — Engineering Requirements Quality Assistant On-Premises 5.4 -2022-07-18
CVE-2022-22460 IBM Security Verify Identity Manager 安全漏洞 — Security Verify Governance 7.5 -2022-07-14
CVE-2022-22453 IBM Security Verify Identity Manager 加密问题漏洞 — Security Verify Governance 7.5 -2022-07-14
CVE-2022-22452 IBM Security Verify Identity Manager 安全漏洞 — Security Verify Governance 7.5 -2022-07-14
CVE-2022-22450 IBM Security Verify Identity Manager 代码问题漏洞 — Security Verify Governance 3.8 -2022-07-14
CVE-2022-35283 IBM Security Verify Information Queue 安全漏洞 — Security Verify Information Queue 6.5 -2022-07-14
CVE-2022-22477 IBM WebSphere Application Server 跨站脚本漏洞 — WebSphere Application Server 5.4 -2022-07-14
CVE-2022-22473 IBM WebSphere Application Server 信息泄露漏洞 — WebSphere Application Server 7.5 -2022-07-14
CVE-2021-39028 IBM Engineering Lifecycle Optimization 注入漏洞 — Engineering Lifecycle Optimization Publishing 5.4 -2022-07-14
CVE-2021-39019 IBM Engineering Lifecycle Optimization 信息泄露漏洞 — Engineering Lifecycle Optimization Publishing 6.5 -2022-07-14
CVE-2021-39018 IBM Engineering Lifecycle Optimization 安全漏洞 — Engineering Lifecycle Optimization Publishing 4.3 -2022-07-14
CVE-2021-39017 IBM Engineering Lifecycle Optimization 安全漏洞 — Engineering Lifecycle Optimization Publishing 6.5 -2022-07-14
CVE-2021-39016 IBM Engineering Lifecycle Optimization 安全漏洞 — Engineering Lifecycle Optimization Publishing 4.3 -2022-07-14
CVE-2021-39015 IBM Engineering Lifecycle Optimization 跨站脚本漏洞 — Engineering Lifecycle Optimization Publishing 5.4 -2022-07-14
CVE-2022-34358 IBM i 跨站脚本漏洞 — i 5.4 -2022-07-13
CVE-2021-39041 IBM QRadar SIEM 输入验证错误漏洞 — QRadar SIEM 5.3 -2022-07-12
CVE-2020-4159 IBM QRadar Network Security 信息泄露漏洞 — QRadar Network Security 7.5 -2022-07-12

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.