Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4710

Browse all 4710 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IBM operates as a multinational technology and consulting corporation, primarily providing enterprise software, hybrid cloud services, and artificial intelligence solutions. Its extensive portfolio, including the Red Hat OpenShift platform and Watson AI suite, creates a broad attack surface that has historically been associated with Remote Code Execution (RCE) vulnerabilities, particularly within web application frameworks and middleware. Cross-site scripting (XSS) and privilege escalation flaws also frequently appear in its legacy enterprise applications and containerized environments. While the company maintains robust security protocols, past incidents have included data breaches affecting customer information and supply chain compromises. The high volume of recorded Common Vulnerabilities and Exposures (CVEs) reflects the complexity and scale of its global infrastructure rather than inherent systemic failure, though it necessitates rigorous patch management and continuous monitoring for enterprise clients relying on its diverse technological stack.

Top products by IBM: DB2 for Linux, UNIX and Windows InfoSphere Information Server WebSphere Application Server Sterling B2B Integrator Security Guardium QRadar SIEM Cognos Analytics MQ Maximo Asset Management API Connect Rational Quality Manager i Rational Collaborative Lifecycle Management Security Key Lifecycle Manager AIX Spectrum Protect Plus Spectrum Scale Robotic Process Automation Cognos Controller UrbanCode Deploy Aspera Faspex Sterling File Gateway Security Identity Governance and Intelligence Rational DOORS Next Generation Cloud Pak System Concert Cloud Pak for Security Financial Transaction Manager Content Navigator Business Automation Workflow
CVE IDTitleCVSSSeverityPublished
CVE-2021-20499 IBM Security Access Manager 调试信息泄露漏洞 — Security Verify Access Docker 2.7 -2021-07-15
CVE-2021-20498 IBM Security Verify Access 信息泄露漏洞 — Security Verify Access Docker 2.7 -2021-07-15
CVE-2021-20497 IBM Security Access Manager 加密问题漏洞 — Security Verify Access Docker 7.5 -2021-07-15
CVE-2021-20496 IBM Security Access Manager 输入验证错误漏洞 — Security Verify Access Docker 2.7 -2021-07-15
CVE-2021-29749 IBM Sterling Secure Proxy 代码问题漏洞 — Secure Proxy 5.4 -2021-07-15
CVE-2021-29725 IBM Sterling Secure Proxy 安全漏洞 — Secure External Authentication Server 7.5 -2021-07-15
CVE-2021-20439 IBM Security Access Manager 信息泄露漏洞 — Security Verify Access Docker 7.5 -2021-07-15
CVE-2021-20424 IBM Cloud Pak for Applications安全漏洞 — Cloud Pak for Applications 4.3 -2021-07-13
CVE-2021-20423 IBM Cloud Pak for Applications安全漏洞 — Cloud Pak for Applications 8.8 -2021-07-13
CVE-2021-20422 IBM Cloud Pak for Applications 信息泄露漏洞 — Cloud Pak for Applications 6.5 -2021-07-13
CVE-2021-20369 IBM Cloud Pak for Applications 加密问题漏洞 — Cloud Pak for Applications 7.5 -2021-07-13
CVE-2021-20368 IBM Cloud Pak for Applications 跨站脚本漏洞 — Cloud Pak for Applications 5.4 -2021-07-13
CVE-2021-20366 IBM Cloud Pak for Applications 跨站脚本漏洞 — Cloud Pak for Applications 5.4 -2021-07-13
CVE-2021-20365 IBM Cloud Pak for Applications跨站脚本漏洞 — Cloud Pak for Applications 5.4 -2021-07-13
CVE-2021-20364 IBM Cloud Pak for Applications 跨站脚本漏洞 — Cloud Pak for Applications 5.4 -2021-07-13
CVE-2021-20363 IBM Cloud Pak for Applications跨站脚本漏洞 — Cloud Pak for Applications 5.4 -2021-07-13
CVE-2021-20362 IBM Cloud Pak for Automation 跨站脚本漏洞 — Cloud Pak for Applications 5.4 -2021-07-13
CVE-2021-20361 IBM Cloud Pak for Applications 跨站脚本漏洞 — Cloud Pak for Applications 5.4 -2021-07-13
CVE-2021-20360 IBM Cloud Pak for Applications加密问题漏洞 — Cloud Pak for Applications 7.5 -2021-07-13
CVE-2021-29822 IBM Jazz for Service Management和IBM Tivoli Netcool/OMNIbus_GUI 跨站脚本漏洞 — Tivoli Netcool/OMNIbus 5.4 -2021-07-12
CVE-2021-29805 IBM Jazz for Service Management和IBM Tivoli Netcool/OMNIbus_GUI 跨站脚本漏洞 — Tivoli Netcool/OMNIbus 5.4 -2021-07-12
CVE-2021-29804 IBM Jazz for Service Management和IBM Tivoli Netcool/OMNIbus_GUI 跨站脚本漏洞 — Tivoli Netcool/OMNIbus 5.4 -2021-07-12
CVE-2021-29803 IBM Jazz for Service Management和IBM Tivoli Netcool/OMNIbus_GUI 跨站脚本漏洞 — Tivoli Netcool/OMNIbus 5.4 -2021-07-12
CVE-2021-29794 IBM Tivoli Netcool Impact 加密问题漏洞 — Tivoli Netcool Impact 7.5 -2021-07-12
CVE-2021-29792 IBM Event Streams 安全漏洞 — Event Streams 7.2 -2021-07-12
CVE-2021-20414 IBM Guardium Data Encryption 安全漏洞 — Guardium Data Encryption 7.5 -2021-07-12
CVE-2020-4938 IBM MQ Appliance 跨站请求伪造漏洞 — MQ Appliance 8.8 -2021-07-12
CVE-2021-29730 IBM InfoSphere Information Server SQL注入漏洞 — InfoSphere Information Server 8.8 -2021-07-09
CVE-2021-29712 IBM InfoSphere Information Server 跨站脚本漏洞 — InfoSphere Information Server 5.4 -2021-07-09
CVE-2021-29711 IBM UrbanCode Deploy 安全漏洞 — UrbanCode Deploy 2.7 -2021-07-08

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.