Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4689

Browse all 4689 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IBM operates as a multinational technology and consulting corporation, primarily providing enterprise software, hybrid cloud services, and artificial intelligence solutions. Its extensive portfolio, including the Red Hat OpenShift platform and Watson AI suite, creates a broad attack surface that has historically been associated with Remote Code Execution (RCE) vulnerabilities, particularly within web application frameworks and middleware. Cross-site scripting (XSS) and privilege escalation flaws also frequently appear in its legacy enterprise applications and containerized environments. While the company maintains robust security protocols, past incidents have included data breaches affecting customer information and supply chain compromises. The high volume of recorded Common Vulnerabilities and Exposures (CVEs) reflects the complexity and scale of its global infrastructure rather than inherent systemic failure, though it necessitates rigorous patch management and continuous monitoring for enterprise clients relying on its diverse technological stack.

Found 31 results / 4689Clear Filters
Top products by IBM: DB2 for Linux, UNIX and Windows InfoSphere Information Server Sterling B2B Integrator WebSphere Application Server Security Guardium QRadar SIEM Cognos Analytics MQ Maximo Asset Management API Connect Rational Quality Manager Rational Collaborative Lifecycle Management Security Key Lifecycle Manager i AIX Spectrum Protect Plus Spectrum Scale Robotic Process Automation Cognos Controller UrbanCode Deploy Aspera Faspex Sterling File Gateway Rational DOORS Next Generation Security Identity Governance and Intelligence Cloud Pak System Concert Cloud Pak for Security Financial Transaction Manager Content Navigator Business Automation Workflow
CVE IDTitleCVSSSeverityPublished
CVE-2024-54179 IBM Business Automation Workflow cross-site scripting — Business Automation WorkflowCWE-79 5.4 Medium2025-03-03
CVE-2024-43188 IBM Business Automation Workflow improper input validation — Business Automation WorkflowCWE-602 4.9 Medium2024-09-18
CVE-2024-38321 IBM Business Automation Workflow information disclosure — Business Automation WorkflowCWE-532 5.3 Medium2024-08-03
CVE-2023-50947 IBM Business Automation Workflow cross-site scripting — Business Automation WorkflowCWE-79 5.4 Medium2024-02-04
CVE-2023-32339 IBM Business Automation Workflow cross-site scripting — Business Automation WorkflowCWE-79 6.1 Medium2023-06-27
CVE-2023-24957 IBM Business Automation Workflow cross-site scripting — Business Automation WorkflowCWE-79 5.4 Medium2023-05-06
CVE-2022-42435 IBM Business Automation Workflow cross-site request forgery — Business Automation WorkflowCWE-352 4.3 Medium2023-01-03
CVE-2022-38390 IBM Business Automation Workflow 跨站脚本漏洞 — Business Automation WorkflowCWE-79 5.4 Medium2022-11-17
CVE-2021-39046 IBM Business Automation Workflow信息泄露漏洞 — Business Automation Workflow 5.5 -2022-03-18
CVE-2021-38900 IBM Business Process Manager和IBM Business Automation Workflow 安全漏洞 — Business Automation Workflow 4.9 -2021-12-21
CVE-2021-29835 IBM Business Process Manager和IBM Business Automation Workflow 跨站脚本漏洞 — Business Automation Workflow 5.4 -2021-10-22
CVE-2021-29878 IBM Business Automation Workflow 跨站脚本漏洞 — Business Automation Workflow 5.4 -2021-10-18
CVE-2021-29834 IBM Business Process Manager和IBM Business Automation Workflow 跨站脚本漏洞 — Business Automation Workflow 5.4 -2021-09-29
CVE-2021-29775 IBM Business Process Manager 跨站脚本漏洞 — Business Automation Workflow 5.4 -2021-06-28
CVE-2020-4768 IBM Case Manager 跨站脚本漏洞 — Business Automation Workflow 5.4 -2021-02-11
CVE-2020-4900 IBM Business Automation Workflow 日志信息泄露漏洞 — Business Automation Workflow 5.5 -2020-11-30
CVE-2020-4672 IBM Business Automation Workflow 跨站脚本漏洞 — Business Automation Workflow 5.4 -2020-11-16
CVE-2020-4531 IBM Business Process Manager (Advanced) 和 IBM Business Automation Workflow 安全漏洞 — Business Automation Workflow 5.3 -2020-09-25
CVE-2019-4669 IBM Business Process Manager和IBM Business Automation Workflow SQL注入漏洞 — Business Automation Workflow 8.8 -2020-02-27
CVE-2019-4426 IBM Case Manager 跨站脚本漏洞 — Business Automation Workflow 5.4 -2019-12-13
CVE-2019-4149 IBM Business Automation Workflow和IBM Business Process Manager 跨站脚本漏洞 — Business Automation Workflow 5.4 -2019-09-05
CVE-2019-4424 IBM Business Process Manager和IBM Business Automation Workflow 代码问题漏洞 — Business Automation Workflow 7.1 -2019-08-20
CVE-2019-4425 IBM Business Automation Workflow和IBM Business Process Manager 信息泄露漏洞 — Business Automation Workflow 5.7 -2019-08-20
CVE-2019-4410 IBM Business Automation Workflow和IBM Business Process Manager 跨站脚本漏洞 — Business Automation Workflow 5.4 -2019-07-01
CVE-2019-4204 IBM Business Process Manager和IBM Business Automation Workflow 跨站脚本漏洞 — Business Automation Workflow 5.4 -2019-05-10
CVE-2019-4045 IBM Business Process Manager和IBM Business Automation Workflow 输入验证错误漏洞 — Business Automation Workflow 4.3 -2019-04-08
CVE-2018-2000 IBM Business Process Manager和IBM Business Automation Workflow 跨站请求伪造漏洞 — Business Automation Workflow 8.8 -2019-04-08
CVE-2018-1999 IBM Business Automation Workflow和IBM Business Process Manager 信息泄露漏洞 — Business Automation Workflow 4.3 -2019-04-08
CVE-2018-1997 IBM Business Process Manager和IBM Business Automation Workflow 资源管理错误漏洞 — Business Automation Workflow 6.5 -2019-04-08
CVE-2018-1885 IBM Business Automation Workflow 信息泄露漏洞 — Business Automation Workflow 7.5 -2019-04-08

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.