Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4689

Browse all 4689 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IBM operates as a multinational technology and consulting corporation, primarily providing enterprise software, hybrid cloud services, and artificial intelligence solutions. Its extensive portfolio, including the Red Hat OpenShift platform and Watson AI suite, creates a broad attack surface that has historically been associated with Remote Code Execution (RCE) vulnerabilities, particularly within web application frameworks and middleware. Cross-site scripting (XSS) and privilege escalation flaws also frequently appear in its legacy enterprise applications and containerized environments. While the company maintains robust security protocols, past incidents have included data breaches affecting customer information and supply chain compromises. The high volume of recorded Common Vulnerabilities and Exposures (CVEs) reflects the complexity and scale of its global infrastructure rather than inherent systemic failure, though it necessitates rigorous patch management and continuous monitoring for enterprise clients relying on its diverse technological stack.

Top products by IBM: DB2 for Linux, UNIX and Windows InfoSphere Information Server Sterling B2B Integrator WebSphere Application Server Security Guardium QRadar SIEM Cognos Analytics MQ Maximo Asset Management API Connect Rational Quality Manager Rational Collaborative Lifecycle Management Security Key Lifecycle Manager i AIX Spectrum Protect Plus Spectrum Scale Robotic Process Automation Cognos Controller UrbanCode Deploy Aspera Faspex Sterling File Gateway Rational DOORS Next Generation Security Identity Governance and Intelligence Cloud Pak System Concert Cloud Pak for Security Financial Transaction Manager Content Navigator Business Automation Workflow
CVE IDTitleCVSSSeverityPublished
CVE-2021-38896 IBM QRadar Advisor with Watson 跨站脚本漏洞 — Qradar Advisor 6.1 -2021-10-20
CVE-2021-38911 Ibm Security Risk Manager on Cp4S 安全漏洞 — Cloud Pak for Security 4.9 -2021-10-19
CVE-2021-29912 Ibm Security Risk Manager on Cp4S 跨站脚本漏洞 — Cloud Pak for Security 5.4 -2021-10-19
CVE-2021-29878 IBM Business Automation Workflow 跨站脚本漏洞 — Business Automation Workflow 5.4 -2021-10-18
CVE-2021-29745 IBM Cognos Analytics 安全漏洞 — Cognos Analytics 8.3 -2021-10-15
CVE-2021-29679 IBM Cognos Analytics 代码注入漏洞 — Cognos Analytics 8.8 -2021-10-15
CVE-2020-4951 IBM Cognos Analytics 信息泄露漏洞 — Cognos Analytics 3.3 -2021-10-15
CVE-2021-38915 IBM Data Risk Manager 安全漏洞 — Data Risk Manager 6.5 -2021-10-12
CVE-2021-38862 IBM Data Risk Manager 加密问题漏洞 — Data Risk Manager 7.5 -2021-10-12
CVE-2021-29906 IBM App Connect Enterprise Certified Container 安全漏洞 — App Connect Enterprise Certified Container 5.5 -2021-10-08
CVE-2020-4654 IBM Sterling File Gateway 安全漏洞 — Sterling File Gateway 4.3 -2021-10-08
CVE-2021-29700 IBM Sterling B2B Integrator 信息泄露漏洞 — Sterling B2B Integrator 4.3 -2021-10-07
CVE-2021-20584 IBM Sterling File Gateway 代码问题漏洞 — Sterling File Gateway 7.5 -2021-10-07
CVE-2021-20571 IBM Sterling B2B Integrator 跨站脚本漏洞 — Sterling B2B Integrator 5.4 -2021-10-07
CVE-2021-20561 IBM Sterling File Gateway 跨站脚本漏洞 — Sterling File Gateway 6.1 -2021-10-07
CVE-2021-20552 IBM Sterling File Gateway 信息泄露漏洞 — Sterling File Gateway 5.3 -2021-10-07
CVE-2021-20489 IBM Sterling File Gateway 跨站请求伪造漏洞 — Sterling File Gateway 8.1 -2021-10-07
CVE-2021-20481 IBM Sterling File Gateway 跨站脚本漏洞 — Sterling File Gateway 6.1 -2021-10-07
CVE-2021-20473 IBM Sterling File Gateway 代码问题漏洞 — Sterling File Gateway 6.5 -2021-10-07
CVE-2021-20376 IBM Sterling File Gateway 信息泄露漏洞 — Sterling File Gateway 4.3 -2021-10-07
CVE-2021-20375 IBM Sterling File Gateway 授权问题漏洞 — Sterling File Gateway 4.3 -2021-10-07
CVE-2021-20372 IBM Sterling File Gateway 授权问题漏洞 — Sterling File Gateway 6.5 -2021-10-07
CVE-2021-38923 IBM PowerVM Hypervisor 安全漏洞 — PowerVM Hypervisor 8.0 -2021-10-06
CVE-2021-29908 IBM Ts7700 授权问题漏洞 — Virtualization Engine TS7700 3957-VED 9.8 -2021-10-06
CVE-2021-38925 IBM Sterling B2B Integrator 加密问题漏洞 — Sterling B2B Integrator 7.5 -2021-10-06
CVE-2021-29903 IBM Sterling B2B Integrator SQL注入漏洞 — Sterling B2B Integrator 8.8 -2021-10-06
CVE-2021-29855 IBM Sterling B2B Integrator 跨站脚本漏洞 — Sterling B2B Integrator 5.4 -2021-10-06
CVE-2021-29837 IBM Sterling B2B Integrator 跨站请求伪造漏洞 — Sterling B2B Integrator 8.8 -2021-10-06
CVE-2021-29836 IBM Sterling B2B Integrator 跨站脚本漏洞 — Sterling B2B Integrator 5.4 -2021-10-06
CVE-2021-29798 IBM Sterling B2B Integrator SQL注入漏洞 — Sterling B2B Integrator 8.8 -2021-10-06

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.