Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4689

Browse all 4689 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IBM operates as a multinational technology and consulting corporation, primarily providing enterprise software, hybrid cloud services, and artificial intelligence solutions. Its extensive portfolio, including the Red Hat OpenShift platform and Watson AI suite, creates a broad attack surface that has historically been associated with Remote Code Execution (RCE) vulnerabilities, particularly within web application frameworks and middleware. Cross-site scripting (XSS) and privilege escalation flaws also frequently appear in its legacy enterprise applications and containerized environments. While the company maintains robust security protocols, past incidents have included data breaches affecting customer information and supply chain compromises. The high volume of recorded Common Vulnerabilities and Exposures (CVEs) reflects the complexity and scale of its global infrastructure rather than inherent systemic failure, though it necessitates rigorous patch management and continuous monitoring for enterprise clients relying on its diverse technological stack.

Top products by IBM: DB2 for Linux, UNIX and Windows InfoSphere Information Server Sterling B2B Integrator WebSphere Application Server Security Guardium QRadar SIEM Cognos Analytics MQ Maximo Asset Management API Connect Rational Quality Manager Rational Collaborative Lifecycle Management Security Key Lifecycle Manager i AIX Spectrum Protect Plus Spectrum Scale Robotic Process Automation Cognos Controller UrbanCode Deploy Aspera Faspex Sterling File Gateway Rational DOORS Next Generation Security Identity Governance and Intelligence Cloud Pak System Concert Cloud Pak for Security Financial Transaction Manager Content Navigator Business Automation Workflow
CVE IDTitleCVSSSeverityPublished
CVE-2021-20540 IBM Cloud Pak for Security 安全漏洞 — Cloud Pak for Security 5.3 -2021-08-02
CVE-2021-20539 IBM Cloud Pak for Security 安全漏洞 — Cloud Pak for Security 5.3 -2021-08-02
CVE-2021-29757 IBM QRadar User Behavior Analytics 跨站请求伪造漏洞 — QRadar User Behavior Analytics 8.8 -2021-08-02
CVE-2021-29741 IBM AIX 权限许可和访问控制问题漏洞 — VIOS 7.8 -2021-08-02
CVE-2021-29781 IBM Sterling Partner Engagement Manager 代码问题漏洞 — Partner Engagement Manager 9.8 -2021-07-30
CVE-2021-29736 IBM WebSphere Application Server 安全漏洞 — WebSphere Application Server 9.8 -2021-07-30
CVE-2021-20505 IBM Power System 安全漏洞 — PowerVM Hypervisor 4.4 -2021-07-29
CVE-2020-5004 IBM Jazz Foundation 跨站脚本漏洞 — Rational Team Concert 5.4 -2021-07-28
CVE-2020-4974 IBM Jazz Foundation 代码问题漏洞 — Engineering Test Management 5.4 -2021-07-28
CVE-2021-20562 IBM Sterling B2B Integrator 跨站脚本漏洞 — Sterling B2B Integrator 5.4 -2021-07-27
CVE-2021-20399 IBM QRadar SIEM 代码问题漏洞 — QRadar SIEM 7.1 -2021-07-27
CVE-2021-29784 IBM i2 Analyze 安全漏洞 — i2 Analyze 5.3 -2021-07-26
CVE-2021-29770 IBM i2 Analyze 安全漏洞 — i2 Analyze 6.5 -2021-07-26
CVE-2021-29769 IBM i2 Analysts Notebook Premium 安全漏洞 — i2 Analyze 4.3 -2021-07-26
CVE-2021-29767 IBM i2 Analyze安全漏洞 — i2 Analyst's Notebook Premium 5.3 -2021-07-26
CVE-2021-29766 IBM i2 Analyze 安全漏洞 — i2 Analyze 5.3 -2021-07-26
CVE-2021-20560 IBM Sterling Connect 安全漏洞 — Sterling Connect:Direct Browser User Interface 5.4 -2021-07-26
CVE-2021-20431 IBM i2 Analysts Notebook Premium 代码问题漏洞 — i2 Analyst's Notebook Premium 7.5 -2021-07-26
CVE-2021-20430 IBM i2 Analysts Notebook Premium 安全漏洞 — i2 Analyze 5.3 -2021-07-26
CVE-2021-20337 IBM QRadar SIEM 加密问题漏洞 — QRadar SIEM 7.5 -2021-07-26
CVE-2020-4623 IBM i2 iBase 代码问题漏洞 — i2 iBase 7.8 -2021-07-26
CVE-2021-20478 IBM Cloud Pak System 信息泄露漏洞 — Cloud Pak System 5.5 -2021-07-20
CVE-2021-29780 IBM Resilient 输入验证错误漏洞 — Resilient OnPrem 5.4 -2021-07-19
CVE-2021-29707 IBM Power Hardware Management Console 安全漏洞 — Power HMC 7.8 -2021-07-19
CVE-2021-20507 IBM Jazz Foundation 跨站脚本漏洞 — Engineering Workflow Management 5.4 -2021-07-19
CVE-2020-5031 IBM Jazz Foundation 跨站脚本漏洞 — Engineering Workflow Management 5.4 -2021-07-19
CVE-2020-4980 IBM QRadar SIEM 安全漏洞 — QRadar 7.5 -2021-07-16
CVE-2020-4821 IBM Cognos Controller 授权问题漏洞 — InfoSphere Change Data Capture for z/OS 9.8 -2021-07-16
CVE-2020-4675 IBM InfoSphere Master Data Management Server 跨站请求伪造漏洞 — InfoSphere Master Data Management 8.8 -2021-07-16
CVE-2021-29742 IBM Security Access Manager Appliance 权限许可和访问控制问题漏洞 — Security Verify Access Docker 7.3 -2021-07-15

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.