Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1110 CNY

100%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4629

Browse all 4629 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IBM operates as a multinational technology and consulting corporation, primarily providing enterprise software, hybrid cloud services, and artificial intelligence solutions. Its extensive portfolio, including the Red Hat OpenShift platform and Watson AI suite, creates a broad attack surface that has historically been associated with Remote Code Execution (RCE) vulnerabilities, particularly within web application frameworks and middleware. Cross-site scripting (XSS) and privilege escalation flaws also frequently appear in its legacy enterprise applications and containerized environments. While the company maintains robust security protocols, past incidents have included data breaches affecting customer information and supply chain compromises. The high volume of recorded Common Vulnerabilities and Exposures (CVEs) reflects the complexity and scale of its global infrastructure rather than inherent systemic failure, though it necessitates rigorous patch management and continuous monitoring for enterprise clients relying on its diverse technological stack.

Top products by IBM: DB2 for Linux, UNIX and Windows InfoSphere Information Server Sterling B2B Integrator WebSphere Application Server Security Guardium QRadar SIEM Cognos Analytics MQ Maximo Asset Management API Connect Rational Quality Manager Rational Collaborative Lifecycle Management Security Key Lifecycle Manager i AIX Spectrum Protect Plus Robotic Process Automation Spectrum Scale UrbanCode Deploy Cognos Controller Aspera Faspex Sterling File Gateway Rational DOORS Next Generation Security Identity Governance and Intelligence Cloud Pak for Security Cloud Pak System Concert Financial Transaction Manager Content Navigator Jazz Reporting Service
CVE IDTitleCVSSSeverityPublished
CVE-2021-39076 IBM Security Guardium 加密问题漏洞 — Security Guardium 7.5 -2022-04-19
CVE-2021-39072 IBM Security Guardium 安全漏洞 — Security Guardium 5.9 -2022-04-19
CVE-2021-39033 IBM Sterling B2B Integrator 安全漏洞 — Sterling B2B Integrator 4.3 -2022-04-19
CVE-2022-22391 IBM Aspera 信息泄露漏洞 — Aspera High-Speed Transfer Endpoint 4.3 -2022-04-14
CVE-2021-39068 IBM Curam Social Program Management 跨站脚本漏洞 — Curam Social Program Management 5.4 -2022-04-11
CVE-2021-38930 IBM System Storage DS8000 Hardware Management Console 安全漏洞 — Hardware Management Console 7.5 -2022-04-11
CVE-2021-38929 IBM System Storage DS8000 Hardware Management Console 安全漏洞 — Hardware Management Console 7.5 -2022-04-11
CVE-2022-22339 IBM Planning Analytics 代码问题漏洞 — Planning Analytics 6.3 -2022-04-08
CVE-2020-4668 IBM Sterling B2B Integrator 跨站请求伪造漏洞 — Sterling B2B Integrator 8.8 -2022-04-08
CVE-2022-22410 IBM Watson Query 安全漏洞 — Watson Query 8.8 -2022-04-06
CVE-2022-22356 IBM MQ Appliance 安全漏洞 — MQ Appliance 6.5 -2022-04-05
CVE-2022-22355 IBM MQ Appliance 安全漏洞 — MQ Appliance 5.3 -2022-04-05
CVE-2022-22404 IBM App Connect Enterprise 安全漏洞 — App Connect Enterprise Certified Container 6.5 -2022-04-01
CVE-2022-22332 IBM Sterling Partner Engagement Manager 安全漏洞 — Sterling Partner Engagement Manager 7.5 -2022-04-01
CVE-2022-22331 IBM Sterling Partner Engagement Manager 安全漏洞 — SterlingPartner Engagement Manager 7.1 -2022-04-01
CVE-2022-22328 IBM Sterling Partner Engagement Manager安全漏洞 — SterlingPartner Engagement Manager 3.3 -2022-04-01
CVE-2022-22327 IBM UrbanCode Deploy 加密问题漏洞 — UrbanCode Deploy 7.5 -2022-04-01
CVE-2022-22311 IBM Security Verify Access 输入验证错误漏洞 — Security Verify Access 6.5 -2022-03-31
CVE-2022-22374 IBM Power System安全漏洞 — Power 9 AC922 8.1 -2022-03-24
CVE-2022-22316 IBM MQ Appliance 安全漏洞 — MQ Appliance 6.5 -2022-03-23
CVE-2022-22394 IBM Spectrum Protect 安全漏洞 — Spectrum Protect Server 8.8 -2022-03-21
CVE-2021-39046 IBM Business Automation Workflow信息泄露漏洞 — Business Automation Workflow 5.5 -2022-03-18
CVE-2021-29899 IBM Engineering Requirements Quality Assistant 安全漏洞 — Engineering Requirements Quality Assistant 6.5 -2022-03-18
CVE-2020-4989 IBM Engineering Workflow Management 安全漏洞 — Engineering Workflow Management 4.3 -2022-03-15
CVE-2022-22353 IBM Cloud Pak for Data 安全漏洞 — Big SQL on Cloud Pak for Data 6.5 -2022-03-14
CVE-2022-22348 IBM Spectrum Protect Operations Center跨站请求伪造漏洞 — Spectrum Protect Operations Center 2.4 -2022-03-14
CVE-2022-22346 IBM Spectrum Protect Operations Center 跨站请求伪造漏洞 — Spectrum Protect Operations Center 8.8 -2022-03-14
CVE-2021-38971 IBM Data Virtualization(DV) on Cloud Pak for Data(CPD) 安全漏洞 — Data Virtualization on Cloud Pak for Data 6.5 -2022-03-14
CVE-2022-22354 IBM Spectrum Protect Plus和IBM Spectrum Copy Data Management 安全漏洞 — Spectrum Copy Data Management 7.5 -2022-03-14
CVE-2022-22344 IBM Spectrum Copy Data Management 注入漏洞 — Spectrum Copy Data Management 6.1 -2022-03-14

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.