Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4629

Browse all 4629 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IBM operates as a multinational technology and consulting corporation, primarily providing enterprise software, hybrid cloud services, and artificial intelligence solutions. Its extensive portfolio, including the Red Hat OpenShift platform and Watson AI suite, creates a broad attack surface that has historically been associated with Remote Code Execution (RCE) vulnerabilities, particularly within web application frameworks and middleware. Cross-site scripting (XSS) and privilege escalation flaws also frequently appear in its legacy enterprise applications and containerized environments. While the company maintains robust security protocols, past incidents have included data breaches affecting customer information and supply chain compromises. The high volume of recorded Common Vulnerabilities and Exposures (CVEs) reflects the complexity and scale of its global infrastructure rather than inherent systemic failure, though it necessitates rigorous patch management and continuous monitoring for enterprise clients relying on its diverse technological stack.

Found 100 results / 4629Clear Filters
Top products by IBM: DB2 for Linux, UNIX and Windows InfoSphere Information Server Sterling B2B Integrator WebSphere Application Server Security Guardium QRadar SIEM Cognos Analytics MQ Maximo Asset Management API Connect Rational Quality Manager Rational Collaborative Lifecycle Management Security Key Lifecycle Manager i AIX Spectrum Protect Plus Robotic Process Automation Spectrum Scale UrbanCode Deploy Cognos Controller Aspera Faspex Sterling File Gateway Rational DOORS Next Generation Security Identity Governance and Intelligence Cloud Pak for Security Cloud Pak System Concert Financial Transaction Manager Content Navigator Jazz Reporting Service
CVE IDTitleCVSSSeverityPublished
CVE-2025-36051 IBM QRadar SIEM Information Disclosure — QRadar SIEMCWE-538 6.2 Medium2026-03-19
CVE-2025-15051 IBM QRadar SIEM Cross-Site Scripting — QRadar SIEMCWE-79 5.4 Medium2026-03-19
CVE-2026-1276 IBM QRadar SIEM Cross-Site Scripting — QRadar SIEMCWE-79 5.4 Medium2026-03-19
CVE-2025-36138 IBM QRadar SIEM cross-site scripting — QRadar SIEMCWE-79 6.4 Medium2025-10-27
CVE-2025-36170 IBM QRadar SIEM cross-site scripting — QRadar SIEMCWE-79 6.4 Medium2025-10-27
CVE-2025-36007 IBM QRadar SIEM incorrect privilege assignment — QRadar SIEMCWE-266 7.8 High2025-10-27
CVE-2025-0164 IBM QRadar SIEM information disclosure — QRadar SIEMCWE-732 2.3 Low2025-09-14
CVE-2025-36042 IBM QRadar SIEM cross-site scripting — QRadar SIEMCWE-79 5.4 Medium2025-08-22
CVE-2025-33120 IBM QRadar SIEM privilege escalation — QRadar SIEMCWE-250 7.8 High2025-08-22
CVE-2025-33118 IBM QRadar SIEM cross-site scripting — QRadar SIEMCWE-79 6.4 Medium2025-08-01
CVE-2025-33097 IBM QRadar SIEM cross-site scripting — QRadar SIEMCWE-79 6.4 Medium2025-07-15
CVE-2025-33117 IBM QRadar SIEM command execution — QRadar SIEMCWE-73 9.1 Critical2025-06-19
CVE-2025-33121 IBM QRadar SIEM XML external entity injection — QRadar SIEMCWE-611 7.1 High2025-06-19
CVE-2025-36050 IBM QRadar SIEM information disclosure — QRadar SIEMCWE-532 6.2 Medium2025-06-19
CVE-2024-56463 IBM QRadar SIEM cross-site scripting — QRadar SIEMCWE-79 4.8 Medium2025-02-14
CVE-2024-28786 IBM QRadar SIEM information disclosure — QRadar SIEMCWE-319 6.5 Medium2025-01-27
CVE-2024-47107 IBM QRadar SIEM cross-site scripting — QRadar SIEMCWE-79 6.4 Medium2024-12-07
CVE-2024-27269 IBM QRadar SIEM information disclosure — QRadar SIEMCWE-286 6.8 Medium2024-05-10
CVE-2023-50949 IBM QRadar improper certificate validation — QRadar SIEMCWE-295 5.9 Medium2024-04-11
CVE-2023-50961 IBM QRadar cross-site scripting — QRadar SIEMCWE-79 4.8 Medium2024-03-27
CVE-2024-28784 IBM QRadar cross-site scripting — QRadar SIEMCWE-79 5.4 Medium2024-03-27
CVE-2023-50950 IBM QRadar information disclosure — QRadar SIEMCWE-200 3.7 Low2024-01-17
CVE-2023-47146 IBM QRadar SIEM information disclosure — QRadar SIEMCWE-200 4.9 Medium2023-12-19
CVE-2023-43041 IBM QRadar information disclosure — QRadar SIEMCWE-200 6.5 Medium2023-10-29
CVE-2023-30994 IBM QRadar SIEM information disclosure — QRadar SIEMCWE-327 5.4 Medium2023-10-14
CVE-2023-40367 IBM QRadar SIEM cross-site scripting — QRadar SIEMCWE-79 5.4 Medium2023-10-14
CVE-2022-43863 IBM QRadar SIEM privilege escalation — QRadar SIEMCWE-20 6.7 Medium2023-03-22
CVE-2022-34351 IBM QRadar SIEM information disclosure — QRadar SIEMCWE-200 5.9 Medium2023-02-17
CVE-2022-30613 IBM QRadar SIEM 安全漏洞 — QRadar SIEM 5.5 -2022-10-07
CVE-2022-22480 IBM QRadar SIEM 安全漏洞 — QRadar SIEM 7.5 -2022-10-07

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.