Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

IBM — Vulnerabilities & Security Advisories 4629

Browse all 4629 CVE security advisories affecting IBM. AI-powered Chinese analysis, POCs, and references for each vulnerability.

IBM operates as a multinational technology and consulting corporation, primarily providing enterprise software, hybrid cloud services, and artificial intelligence solutions. Its extensive portfolio, including the Red Hat OpenShift platform and Watson AI suite, creates a broad attack surface that has historically been associated with Remote Code Execution (RCE) vulnerabilities, particularly within web application frameworks and middleware. Cross-site scripting (XSS) and privilege escalation flaws also frequently appear in its legacy enterprise applications and containerized environments. While the company maintains robust security protocols, past incidents have included data breaches affecting customer information and supply chain compromises. The high volume of recorded Common Vulnerabilities and Exposures (CVEs) reflects the complexity and scale of its global infrastructure rather than inherent systemic failure, though it necessitates rigorous patch management and continuous monitoring for enterprise clients relying on its diverse technological stack.

Found 106 results / 4629Clear Filters
Top products by IBM: DB2 for Linux, UNIX and Windows InfoSphere Information Server Sterling B2B Integrator WebSphere Application Server Security Guardium QRadar SIEM Cognos Analytics MQ Maximo Asset Management API Connect Rational Quality Manager Rational Collaborative Lifecycle Management Security Key Lifecycle Manager i AIX Spectrum Protect Plus Robotic Process Automation Spectrum Scale UrbanCode Deploy Cognos Controller Aspera Faspex Sterling File Gateway Rational DOORS Next Generation Security Identity Governance and Intelligence Cloud Pak for Security Cloud Pak System Concert Financial Transaction Manager Content Navigator Jazz Reporting Service
CVE IDTitleCVSSSeverityPublished
CVE-2025-3473 IBM Security Guardium privilege escalation — Security GuardiumCWE-277 6.7 Medium2025-06-11
CVE-2025-25029 IBM Security Guardium information disclosure — Security GuardiumCWE-116 4.9 Medium2025-05-28
CVE-2025-25026 IBM Security Guardium information disclosure — Security GuardiumCWE-863 4.3 Medium2025-05-28
CVE-2025-25025 IBM Security Guardium information disclosure — Security GuardiumCWE-209 4.3 Medium2025-05-28
CVE-2025-3440 IBM Security Guardium cross-site scripting — Security GuardiumCWE-79 5.5 Medium2025-05-15
CVE-2025-25023 IBM Security Guardium information disclosure — Security GuardiumCWE-266 4.9 Medium2025-04-09
CVE-2024-49336 IBM Security Guardium server-side request forgery — Security GuardiumCWE-918 6.5 Medium2024-12-19
CVE-2023-47710 IBM Security Guardium cross-site scripting — Security GuardiumCWE-79 5.4 Medium2024-05-24
CVE-2023-47717 IBM Security Guardium denial of service — Security Guardium 4.4 Medium2024-05-16
CVE-2023-47711 IBM Security Guardium denial of service — Security GuardiumCWE-434 2.7 Low2024-05-11
CVE-2023-47712 IBM Security Guardium privilege escalation — Security GuardiumCWE-732 7.8 High2024-05-11
CVE-2023-47709 IBM Security Guardium command injection — Security GuardiumCWE-78 9.1 Critical2024-05-11
CVE-2023-42004 IBM Security Guardium CSV injection — Security GuardiumCWE-1236 8.0 High2023-11-28
CVE-2022-43906 IBM Security Guardium information disclosure — Security Guardium 3.1 Low2023-10-04
CVE-2022-43903 IBM Security Guardium denial of service — Security GuardiumCWE-20 4.3 Medium2023-09-04
CVE-2022-43904 IBM Security Guardium information disclosure — Security GuardiumCWE-307 7.5 High2023-08-27
CVE-2023-33852 IBM Security Guardium SQL injection — Security GuardiumCWE-89 7.6 High2023-08-27
CVE-2022-43909 IBM Security Guardium cross-site scripting — Security GuardiumCWE-79 4.6 Medium2023-08-27
CVE-2022-43907 IBM Security Guardium command execution — Security GuardiumCWE-78 7.2 High2023-08-27
CVE-2023-30437 IBM Security Guardium information disclosure — Security Guardium 5.3 Medium2023-08-27
CVE-2023-30436 IBM Security Guardium cross-site scripting — Security GuardiumCWE-79 5.5 Medium2023-08-27
CVE-2023-30435 IBM Security Guardium cross-site scripting — Security GuardiumCWE-79 8.9 High2023-08-27
CVE-2023-35893 IBM Security Guardium command execution — Security GuardiumCWE-78 9.9 Critical2023-08-16
CVE-2022-43910 IBM Security Guardium privilege escalation — Security Guardium 8.4 High2023-07-19
CVE-2022-43908 IBM Security Guardium denial of service — Security GuardiumCWE-20 4.3 Medium2023-07-19
CVE-2022-22307 IBM Security Guardium privilege escalation — Security GuardiumCWE-863 4.4 Medium2023-06-15
CVE-2023-0041 IBM Security Guardium session fixation — Security GuardiumCWE-613 6.3 Medium2023-06-05
CVE-2022-39166 IBM Security Guardium information disclosure — Security GuardiumCWE-200 4.4 Medium2022-12-20
CVE-2021-39077 IBM Security Guardium information disclosure — Security GuardiumCWE-319 4.4 Medium2022-11-03
CVE-2021-39074 IBM Security Guardium 跨站脚本漏洞 — Security Guardium 6.1 -2022-06-29

This page lists every published CVE security advisory associated with IBM. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.