Known Vulnerabilities for products from Ibm

Listed below are 20 of the newest known vulnerabilities associated with the vendor "Ibm".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2021-38925 IBM Sterling B2B Integrator Standard Edition 5.2.0. 0 through 6.1.1.0 uses weaker than expected cryptographic algorithms that... 7.5 - HIGH 2021-10-06 2021-10-14
CVE-2021-38923 IBM PowerVM Hypervisor FW1010 could allow a privileged user to gain access to another VM due to assigning duplicate WWPNs. IB... 9.1 - CRITICAL 2021-10-06 2021-10-14
CVE-2021-38915 IBM Data Risk Manager 2.0.6 stores user credentials in plain clear text which can be read by an authenticated user. IBM X-For... 6.5 - MEDIUM 2021-10-12 2021-10-18
CVE-2021-38911 IBM Security Risk Manager on CP4S 1.7.0.0 stores user credentials in plain clear text which can be read by a an authenticated... 4.9 - MEDIUM 2021-10-19 2021-10-22
CVE-2021-38899 IBM Cloud Pak for Data 2.5 could allow a local user with special privileges to obtain highly sensitive information. IBM X-For... 4.4 - MEDIUM 2021-09-20 2021-09-28
CVE-2021-38896 IBM QRadar Advisor 2.5 through 2.6.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrar... 6.1 - MEDIUM 2021-10-20 2021-10-26
CVE-2021-38877 IBM Jazz for Service Management 1.1.3.10 is vulnerable to stored cross-site scripting. This vulnerability allows users to emb... 5.4 - MEDIUM 2021-09-23 2021-09-27
CVE-2021-38870 IBM Aspera Cloud is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript ... 5.4 - MEDIUM 2021-09-23 2021-09-29
CVE-2021-38864 IBM Security Verify Bridge 1.0.5.0 could allow a user to obtain sensitive information due to improper certificate validation.... 7.5 - HIGH 2021-09-23 2021-09-29
CVE-2021-38863 IBM Security Verify Bridge 1.0.5.0 stores user credentials in plain clear text which can be read by a locally authenticated u... 5.5 - MEDIUM 2021-09-23 2021-09-29
CVE-2021-38862 IBM Data Risk Manager (iDNA) 2.0.6 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt... 7.5 - HIGH 2021-10-12 2021-10-18
CVE-2021-29912 IBM Security Risk Manager on CP4S 1.7.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arb... 5.4 - MEDIUM 2021-10-19 2021-10-22
CVE-2021-29908 The IBM TS7700 Management Interface is vulnerable to unauthenticated access. By accessing a specially-crafted URL, an attacke... 9.8 - CRITICAL 2021-10-06 2021-10-14
CVE-2021-29907 IBM OpenPages with Watson 8.1 and 8.2 could allow an authenticated user to upload a file that could execute arbitrary code on... 8.8 - HIGH 2021-08-31 2021-09-07
CVE-2021-29906 IBM App Connect Enterprise Certified Container 1.0, 1.1, 1.2, 1.3, 1.4 and 1.5 could disclose sensitive information to a loca... 5.5 - MEDIUM 2021-10-08 2021-10-15
CVE-2021-29905 IBM Jazz for Service Management 1.1.3.10 and IBM Tivoli Netcool/OMNIbus_GUI is vulnerable to cross-site scripting. This vulne... 5.4 - MEDIUM 2021-09-23 2021-09-27
CVE-2021-29904 IBM Jazz for Service Management 1.1.3.10 and IBM Tivoli Netcool/OMNIbus_GUI displays user credentials in plain clear text whi... 5.5 - MEDIUM 2021-09-23 2021-09-27
CVE-2021-29903 IBM Sterling B2B Integrator Standard Edition 5.2.6.0 through 6.1.1.0 is vulnerable to SQL injection. A remote attacker could ... 9.8 - CRITICAL 2021-10-06 2021-10-14
CVE-2021-29894 IBM Cloud Pak for Security (CP4S) 1.7.0.0, 1.7.1.0, 1.7.2.0, and 1.8.0.0 uses weaker than expected cryptographic algorithms t... 7.5 - HIGH 2021-09-30 2021-10-04
CVE-2021-29883 IBM Standards Processing Engine (IBM Transformation Extender Advanced 9.0 and 10.0) does not set the secure attribute on auth... 4.3 - MEDIUM 2021-10-21 2021-10-26

Known software with vulnerabilities from Ibm

Type Vendor Product Version
HardwareIbm4758-
ApplicationIbmAccess Ibm Message Center2.103
ApplicationIbmAccess Manager For Microsoft .net4.0.6
ApplicationIbmAcprunner-
ApplicationIbmActuate Encyclopedia For Ibm Maximo6.2.0.0
HardwareIbmAdvanced Management Module-
Operating
System
IbmAdvanced Management Module Firmware-
ApplicationIbmAdvanced Settings Utility3.62
ApplicationIbmAgent Controller5.0.2
Operating
System
IbmAix-
ApplicationIbmAix 5l-
ApplicationIbmAix Enetwork Firewall-
ApplicationIbmAix Parallel Systems Support Programs-
ApplicationIbmAix Snmp-
ApplicationIbmAlgo Credit Limits4.5.0
ApplicationIbmAlgo One4.7.0
ApplicationIbmAlgo Risk Application1.1.1
ApplicationIbmAlgorithmics-
ApplicationIbmAlphaworks Tftp Server-
ApplicationIbmApi Connect5.0.0.0

Popular searches for "Ibm"

IBM - United States

www.ibm.com

BM - United States For more than a century IBM g e c has been dedicated to every client's success and to creating innovations that matter for the world

www.ibm.com/us/en www.ibm.com/contact/us/en www.ibm.com/contact/us/en www.ibm.com/us/en/?lnk=m www.ibm.com/us-en www.ibm.com/contact/us/en/?lnk=flg-cont-usen www.ibm.com/us-en IBM Cloud computing Artificial intelligence Data Application software United States System integration IBM cloud computing Automation Cyberattack Free software Distributed computing Innovation Ransomware X-Force On-premises software Watson (computer) Artificial intelligence in video games Blockchain Client (computing)

IBM Research

www.research.ibm.com

IBM Research At IBM k i g Research, were inventing whats next to catalyze and drive the advancements that shape our world.

research.ibm.com/?lnk=fdi www.watson.ibm.com www.draco.res.ibm.com/ai research.ibm.com/?lnk=fdi www.watson.ibm.com/index.shtml www.research.ibm.com/cognitive-computing/index.shtml IBM Research Artificial intelligence IBM Cloud computing Science Blog Computer hardware Command-line interface Question answering Open-source software Email Discover (magazine) Watson (computer) Innovation Research Process (computing) Python (programming language) Newsletter Catalysis Microsoft Access