Vulnerabilities in IBM
4,716 resultsCVE-2019-4521HIGHPlatform System Manager in IBM Cloud Pak System 2.3 is potentially vulnerable to CVS Injection. A remote attacker could execute arbitrary coEPSS 2.6%CVE-2020-4711MEDIUMIBM Spectrum Protect Plus 10.1.0 through 10.1.6 could allow a remote attacker to traverse directories on the system. An attacker could send EPSS 2.6%CVE-2019-4713HIGHIBM Security Guardium Data Encryption (GDE) 3.0.0.2 could allow a remote authenticated attacker to execute arbitrary commands on the system.EPSS 2.6%CVE-2020-4434HIGHCertain IBM Aspera applications are vulnerable to buffer overflow based on the product configuration and valid authentication, which could aEPSS 2.6%CVE-2019-4460MEDIUMIBM API Connect 5.0.0.0 through 5.0.8.6 developer portal could allow a remote attacker to traverse directories on the system. An attacker coEPSS 2.6%CVE-2019-4430MEDIUMIBM Maximo Asset Management 7.6 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafEPSS 2.6%CVE-2018-1435HIGHIBM Notes 8.5 and 9.0 is vulnerable to a DLL hijacking attack. A remote attacker could trick a user to double click a malicious executable iEPSS 2.6%CVE-2021-20453HIGHIBM WebSphere Application Server 8.0, 8.5, and 9.0 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. AEPSS 2.6%CVE-2018-1744HIGHIBM Security Key Lifecycle Manager 2.5, 2.6, 2.7, and 3.0 could allow a remote attacker to traverse directories on the system. An attacker cEPSS 2.6%CVE-2020-4789MEDIUMIBM QRadar SIEM 7.4.2 GA to 7.4.2 Patch 1, 7.4.0 to 7.4.1 Patch 1, and 7.3.0 to 7.3.3 Patch 5 could allow a remote attacker to traverse direEPSS 2.6%CVE-2021-29696HIGHIBM Cloud Pak for Security (CP4S) 1.5.0.0, 1.5.1.0, 1.6.0.0, 1.6.1.0, 1.7.0.0, and 1.7.1.0 could allow a remote authenticated attacker to exEPSS 2.5%CVE-2023-43040MEDIUMIBM Spectrum Fusion HCI improper access controlEPSS 2.5%CVE-2020-4693CRITICALIBM Spectrum Protect Operations Center 7.1.0.000 through 7.1.10 and 8.1.0.000 through 8.1.9 may allow an attacker to execute arbitrary code EPSS 2.5%CVE-2017-1723—IBM Security QRadar SIEM 7.2 and 7.3 could allow a remote attacker to traverse directories on the system. An attacker could send a speciallyEPSS 2.5%CVE-2018-1649HIGHIBM QRadar Incident Forensics 7.2 and 7.3 could allow a remote attacker to traverse directories on the system. An attacker could send a specEPSS 2.5%CVE-2020-4782MEDIUMIBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to traverse directories on the system. An attacker couEPSS 2.5%CVE-2018-1905HIGHIBM WebSphere Application Server 9.0.0.0 through 9.0.0.9 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML dEPSS 2.5%CVE-2018-1457HIGHAn undisclosed vulnerability in IBM Rational DOORS 9.5.1 through 9.6.1.10 application allows an attacker to gain DOORS administrator privileEPSS 2.5%CVE-2018-1426HIGHIBM GSKit (IBM DB2 for Linux, UNIX and Windows 9.7, 10.1, 10.5, and 11.1) duplicates the PRNG state across fork() system calls when multipleEPSS 2.5%CVE-2020-4670HIGHIBM Planning Analytics Local 2.0 connects to a Redis server. The Redis server, an in-memory data structure store, running on the remote hostEPSS 2.5%