IBM — Vulnerabilities & Security Advisories 4629

Browse all 4629 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IBM operates as a multinational technology and consulting corporation, primarily providing enterprise software, hybrid cloud services, and artificial intelligence solutions. Its extensive portfolio, including the Red Hat OpenShift platform and Watson AI suite, creates a broad attack surface that has historically been associated with Remote Code Execution (RCE) vulnerabilities, particularly within web application frameworks and middleware. Cross-site scripting (XSS) and privilege escalation flaws also frequently appear in its legacy enterprise applications and containerized environments. While the company maintains robust security protocols, past incidents have included data breaches affecting customer information and supply chain compromises. The high volume of recorded Common Vulnerabilities and Exposures (CVEs) reflects the complexity and scale of its global infrastructure rather than inherent systemic failure, though it necessitates rigorous patch management and continuous monitoring for enterprise clients relying on its diverse technological stack.

CVEs 4629

CVE ID	Title	CVSS	Severity	Published
CVE-2025-13915	Authentication bypass in IBM API Connect — API ConnectCWE-305	9.8	Critical	2025-12-26
CVE-2023-47722	IBM API Connect information disclosure — API Connect	6.2	Medium	2023-12-09
CVE-2023-28522	IBM API Connect improper access control — API Connect	4.3	Medium	2023-05-12
CVE-2022-34350	IBM API Connect security bypass — API Connect	5.3	Medium	2023-02-08
CVE-2021-38997	IBM API Connect HOST header injection — API ConnectCWE-644	5.4	Medium	2022-12-01
CVE-2021-29772	IBM API Connect 代码注入漏洞 — API Connect	9.8	-	2021-08-26
CVE-2021-29715	IBM API Connect 安全漏洞 — API Connect	9.1	-	2021-08-26
CVE-2020-4706	IBM API Connect 跨站脚本漏洞 — API Connect	5.4	-	2021-08-17
CVE-2020-4707	IBM API Connect 跨站脚本漏洞 — API Connect	5.4	-	2021-08-04
CVE-2021-20440	IBM API Connect 安全漏洞 — API Connect	4.3	-	2021-03-15
CVE-2020-4903	IBM API Connect 安全漏洞 — API Connect	8.2	-	2021-03-08
CVE-2020-4695	IBM API Connect 安全漏洞 — API Connect	7.5	-	2021-03-08
CVE-2020-4828	IBM API Connect 输入验证错误漏洞 — API Connect	6.5	-	2021-02-04
CVE-2020-4827	IBM API Connect 跨站请求伪造漏洞 — API Connect	8.8	-	2021-02-04
CVE-2020-4825	IBM API Connect 跨站脚本漏洞 — API Connect	5.4	-	2021-02-04
CVE-2020-4826	IBM API Connect 跨站请求伪造漏洞 — API Connect	8.8	-	2021-02-04
CVE-2020-4640	IBM API Connect 信息泄露漏洞 — API Connect	4.1	-	2021-02-04
CVE-2020-4838	IBM API Connect 跨站脚本漏洞 — API Connect	5.4	-	2021-01-12
CVE-2020-4899	IBM API Connect 安全漏洞 — API Connect	9.1	-	2021-01-05
CVE-2020-4638	IBM API Connect 安全漏洞 — API Connect	7.2	-	2020-09-03
CVE-2020-4337	IBM API Connect 安全漏洞 — API Connect	6.5	-	2020-09-03
CVE-2020-4452	IBM API Connect 信息泄露漏洞 — API Connect	7.5	-	2020-06-29
CVE-2020-4251	IBM API Connect 跨站脚本漏洞 — API Connect	5.4	-	2020-06-12
CVE-2020-4346	IBM API Connect 信息泄露漏洞 — API Connect	5.3	-	2020-05-12
CVE-2020-4195	IBM API Connect 安全漏洞 — API Connect	6.1	-	2020-05-12
CVE-2019-4553	IBM API Connect 信息泄露漏洞 — API Connect	7.5	-	2020-03-24
CVE-2019-4609	IBM API Connect 信息泄露漏洞 — API Connect	7.5	-	2019-12-18
CVE-2019-4444	IBM API Connect 信息泄露漏洞 — API Connect	6.5	-	2019-12-16
CVE-2019-4600	IBM API Connect 信息泄露漏洞 — API Connect	5.3	-	2019-10-28
CVE-2019-4437	IBM API Connect 信息泄露漏洞 — API Connect	7.5	-	2019-08-20

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Goal Reached Thanks to every supporter — we hit 100%!

IBM — Vulnerabilities & Security Advisories 4629