IBM — Vulnerabilities & Security Advisories 4629

Browse all 4629 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IBM operates as a multinational technology and consulting corporation, primarily providing enterprise software, hybrid cloud services, and artificial intelligence solutions. Its extensive portfolio, including the Red Hat OpenShift platform and Watson AI suite, creates a broad attack surface that has historically been associated with Remote Code Execution (RCE) vulnerabilities, particularly within web application frameworks and middleware. Cross-site scripting (XSS) and privilege escalation flaws also frequently appear in its legacy enterprise applications and containerized environments. While the company maintains robust security protocols, past incidents have included data breaches affecting customer information and supply chain compromises. The high volume of recorded Common Vulnerabilities and Exposures (CVEs) reflects the complexity and scale of its global infrastructure rather than inherent systemic failure, though it necessitates rigorous patch management and continuous monitoring for enterprise clients relying on its diverse technological stack.

HighCVE-2024-50912026-04-03

CVE-2026-5201 - Red Hat Customer Portal

Critical2026-02-24

Security Bulletin: Multiple Vulnerabilities in IBM Concert Software.

MediumCVE-2025-146892026-02-24

Security Bulletin: IBM® Db2® federated server is vulnerable to a denial of service when manipulating or using queries wi

HighCVE-2025-362472026-02-24

Security Bulletin: IBM® Db2® is vulnerable to external entities parsing in XML (CVE-2025-36247)

Medium2026-02-24

Security Bulletin: Improper Access Control and Exposure of Information Through Directory Listing vulnerabilities affect

MediumCVE-2025-133332026-02-24

Security Bulletin: IBM WebSphere Application Server could provide weaker than expected security (CVE-2025-13333)

High2026-02-24

Security Bulletin: IBM Security QRadar EDR Software has multiple vulnerabilities

HighCVE-2021-203532025-11-20

ZDI-21-174 | Zero Day Initiative

CriticalZDI-10-1942025-11-19

ZDI-10-194 | Zero Day Initiative

HighCVE-2025-361182025-11-18

Security Bulletin: Vulnerability in strongswan affects IBM SAN Volume Controller, IBM Spectrum Virtualize and IBM FlashS

High2025-11-18

Security Bulletin: Multiple vulnerabilities in IBM Planning Analytics

MediumCVE-2025-273682025-11-14

Security Bulletin: IBM OpenPages Vulnerable to Information Disclosure (CVE-2025-27368)

MediumCVE-2021-299062025-11-14

Security Bulletin: IBM App Connect Enterprise Certified Container could disclose sensitive information to a local user w

MediumCVE-2021-296942025-11-14

Security Bulletin: IBM Spectrum Protect Plus allows Weak Cryptographic Algorithms (CVE-2021-29694)

High2025-11-14

Security Bulletin: IBM QRadar Wincollect is vulnerable to using components with known vulnerabilities

MediumCVE-2023-477182025-11-14

Security Bulletin: There is a vulnerability in CSRF Token used by IBM Maximo Asset Management application (CVE-2023-4771

MediumCVE-2019-41202025-11-13

Security Bulletin: IBM Cloud Private is Vulnerable to Reflected Cross-Site Scripting attacks (CVE-2019-4120)

Medium2025-11-13

Security Bulletin: Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for

MediumCVE-2018-16862025-11-13

Security Bulletin: IBM Maximo Asset Management is vulnerable to cross-site scripting. (CVE-2018-1686)

HighSA-CORE-2025-0012025-11-12

SSA-339694

Showing up to 20 recent security advisories. View all →

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Goal Reached Thanks to every supporter — we hit 100%!

IBM — Vulnerabilities & Security Advisories 4629