Vulnerabilities in IBM
4,716 resultsCVE-2018-1779HIGHIBM API Connect 2018.1 through 2018.3.7 could allow an unauthenticated attacker to cause a denial of service due to not setting limits on JSEPSS 2.5%CVE-2019-4055HIGHIBM MQ 8.0.0.0 through 8.0.0.10, 9.0.0.0 through 9.0.0.5, and 9.1.0.0 through 9.1.1 is vulnerable to a denial of service attack within the TEPSS 2.5%CVE-2018-2006MEDIUMIBM Robotic Process Automation with Automation Anywhere 11 could allow a remote attacker to traverse directories on the system. An attacker EPSS 2.5%CVE-2021-20576HIGHIBM Security Verify Access 20.07 could allow a remote attacker to send a specially crafted HTTP GET request that could cause the applicationEPSS 2.5%CVE-2019-4043HIGHIBM Sterling B2B Integrator Standard Edition 5.2.0 snf 6.0.0.0 is vulnerable to an XML External Entity Injection (XXE) attack when processinEPSS 2.5%CVE-2020-5015HIGHIBM Elastic Storage System 6.0.0 through 6.0.1.2 and IBM Elastic Storage Server 5.3.0 through 5.3.6.2 could allow a remote attacker to causeEPSS 2.5%CVE-2017-1458—IBM QRadar Network Security 5.4 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker coEPSS 2.5%CVE-2018-1727HIGHIBM InfoSphere Information Server 9.1, 11.3, 11.5, and 11.7 is vulnerable to a XML External Entity Injection (XXE) attack when processing XMEPSS 2.5%CVE-2018-1801MEDIUMIBM App Connect V11.0.0.0 through V11.0.0.1, IBM Integration Bus V10.0.0.0 through V10.0.0.13, IBM Integration Bus V9.0.0.0 through V9.0.0.1EPSS 2.5%CVE-2017-1749MEDIUMIBM UrbanCode Deploy 6.1 through 6.9.6.0 could allow a remote attacker to traverse directories on the system. An unauthenticated attacker coEPSS 2.4%CVE-2020-4362HIGHIBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 traditional is vulnerable to a privilege escalation vulnerability when using token-bEPSS 2.4%CVE-2019-4419HIGHIBM Intelligent Operations Center V5.1.0 through V5.2.0 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML dEPSS 2.4%CVE-2019-4340HIGHIBM Security Guardium Big Data Intelligence 4.0 (SonarG) is vulnerable to an XML External Entity Injection (XXE) attack when processing XML EPSS 2.4%CVE-2019-4424HIGHIBM Business Automation Workflow 18.0.0.0, 18.0.0.1, 18.0.0.2, 19.0.0.1, and 19.0.0.2 is vulnerable to an XML External Entity Injection (XXEEPSS 2.4%CVE-2018-1786MEDIUMIBM Spectrum Protect 7.1 and 8.1 dsmc and dsmcad processes incorrectly accumulate TCP/IP sockets in a CLOSE_WAIT state. This can cause TCP/IEPSS 2.4%CVE-2018-1883MEDIUMA problem within the IBM MQ 9.0.2, 9.0.3, 9.0.4, 9.0.5, and 9.1.0.0 Console REST API Could allow attackers to execute a denial of service atEPSS 2.4%CVE-2018-1364—IBM Content Navigator 2.0 and 3.0 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker EPSS 2.4%CVE-2018-1595HIGHIBM Spectrum Symphony and Platform Symphony 7.1.2 and 7.2.0.2 could allow an authenticated user to execute arbitrary commands due to impropeEPSS 2.4%CVE-2020-4420HIGHIBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow an unauthenticated attacker toEPSS 2.4%CVE-2018-1542HIGHIBM FileNet Content Manager, IBM Content Foundation, and IBM Case Foundation Administration Console for Content Platform Engine (ACCE) 5.2.1EPSS 2.4%