Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4629

Browse all 4629 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IBM operates as a multinational technology and consulting corporation, primarily providing enterprise software, hybrid cloud services, and artificial intelligence solutions. Its extensive portfolio, including the Red Hat OpenShift platform and Watson AI suite, creates a broad attack surface that has historically been associated with Remote Code Execution (RCE) vulnerabilities, particularly within web application frameworks and middleware. Cross-site scripting (XSS) and privilege escalation flaws also frequently appear in its legacy enterprise applications and containerized environments. While the company maintains robust security protocols, past incidents have included data breaches affecting customer information and supply chain compromises. The high volume of recorded Common Vulnerabilities and Exposures (CVEs) reflects the complexity and scale of its global infrastructure rather than inherent systemic failure, though it necessitates rigorous patch management and continuous monitoring for enterprise clients relying on its diverse technological stack.

Top products by IBM: DB2 for Linux, UNIX and Windows InfoSphere Information Server Sterling B2B Integrator WebSphere Application Server Security Guardium QRadar SIEM Cognos Analytics MQ Maximo Asset Management API Connect Rational Quality Manager Rational Collaborative Lifecycle Management Security Key Lifecycle Manager i AIX Spectrum Protect Plus Robotic Process Automation Spectrum Scale UrbanCode Deploy Cognos Controller Aspera Faspex Sterling File Gateway Rational DOORS Next Generation Security Identity Governance and Intelligence Cloud Pak for Security Cloud Pak System Concert Financial Transaction Manager Content Navigator Jazz Reporting Service
CVE IDTitleCVSSSeverityPublished
CVE-2025-36070 IBM Db2 Denial of Service — Db2 for Linux, UNIX and WindowsCWE-770 6.5 Medium2026-01-30
CVE-2025-36098 IBM Db2 Denial of Service — Db2 for Linux, UNIX and WindowsCWE-770 6.5 Medium2026-01-30
CVE-2025-36123 IBM Db2 Denial of Service — Db2 for Linux, UNIX and WindowsCWE-770 6.2 Medium2026-01-30
CVE-2025-36184 IBM Db2 Privilege Escalation — Db2 for Linux, UNIX and WindowsCWE-250 7.2 High2026-01-30
CVE-2025-36353 IBM Db2 Denial of Service — Db2 for Linux, UNIX and WindowsCWE-943 6.2 Medium2026-01-30
CVE-2025-36365 IBM Db2 Privilege Escalation — Db2 for Linux, UNIX and WindowsCWE-639 6.8 Medium2026-01-30
CVE-2025-36366 IBM Db2 Denial of Service — Db2 for Linux, UNIX and WindowsCWE-943 6.5 Medium2026-01-30
CVE-2025-36384 IBM Db2 Privilege Escalation — Db2 for Linux, UNIX and WindowsCWE-428 8.4 High2026-01-30
CVE-2025-36387 IBM Db2 Denial of Service — Db2 for Linux, UNIX and WindowsCWE-770 6.5 Medium2026-01-30
CVE-2025-36407 IBM Db2 Denial of Service — Db2 for Linux, UNIX and WindowsCWE-1284 6.5 Medium2026-01-30
CVE-2025-36423 IBM Db2 Denial of Service — Db2 for Linux, UNIX and WindowsCWE-1284 6.5 Medium2026-01-30
CVE-2025-36424 IBM Db2 Denial of Service — Db2 for Linux, UNIX and WindowsCWE-1284 6.5 Medium2026-01-30
CVE-2025-36427 IBM Db2 Denial of Service — Db2 for Linux, UNIX and WindowsCWE-1284 6.5 Medium2026-01-30
CVE-2025-36428 IBM Db2 Denial of Service — Db2 for Linux, UNIX and WindowsCWE-1284 5.3 Medium2026-01-30
CVE-2025-36442 IBM Db2 Denial of Service — Db2 for Linux, UNIX and WindowsCWE-943 6.5 Medium2026-01-30
CVE-2025-36419 Multiple vulnerabilities found in IBM ApplinX. — ApplinXCWE-550 5.3 Medium2026-01-20
CVE-2025-36418 Multiple vulnerabilities found in IBM ApplinX. — ApplinXCWE-347 7.3 High2026-01-20
CVE-2025-36411 Multiple vulnerabilities found in IBM ApplinX. — ApplinXCWE-352 3.5 Low2026-01-20
CVE-2025-36410 Multiple vulnerabilities found in IBM ApplinX. — ApplinXCWE-602 3.1 Low2026-01-20
CVE-2025-36409 Multiple vulnerabilities found in IBM ApplinX. — ApplinXCWE-79 5.4 Medium2026-01-20
CVE-2025-36408 Multiple vulnerabilities found in IBM ApplinX. — ApplinXCWE-79 6.4 Medium2026-01-20
CVE-2025-36397 Security vulnerabilities have been found in IBM Application Gateway — Application GatewayCWE-80 5.4 Medium2026-01-20
CVE-2025-36396 Security vulnerabilities have been found in IBM Application Gateway — Application GatewayCWE-79 5.4 Medium2026-01-20
CVE-2025-36115 Multiple vulnerabilities were addressed in IBM Sterling Connect:Express for UNIX. — Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0CWE-384 6.3 Medium2026-01-20
CVE-2025-36113 Multiple vulnerabilities were addressed in IBM Sterling Connect:Express for UNIX. — Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0CWE-79 5.4 Medium2026-01-20
CVE-2025-36066 Multiple vulnerabilities were addressed in IBM Sterling Connect:Express for UNIX. — Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0CWE-79 6.1 Medium2026-01-20
CVE-2025-36065 Multiple vulnerabilities were addressed in IBM Sterling Connect:Express for UNIX. — Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0CWE-613 6.3 Medium2026-01-20
CVE-2025-36063 Multiple vulnerabilities were addressed in IBM Sterling Connect:Express for UNIX. — Sterling Connect:Express Adapter for Sterling B2B Integrator 5.2.0CWE-613 6.3 Medium2026-01-20
CVE-2025-36058 Multiple security vulnerabilities are addressed in IBM Business Automation Workflow Containers fixes December 2025 — Business Automation Workflow containersCWE-538 5.5 Medium2026-01-20
CVE-2025-36059 Multiple security vulnerabilities are addressed in IBM Business Automation Workflow Containers fixes December 2025 — Business Automation Workflow containersCWE-250 4.7 Medium2026-01-20

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.