Filter
AND
-Infinity
0

Trending

Last week
Last month
Last year

Software

ibm aix
78
ibm websphere application server feature pack for web services
46
ibm cognos analytics
42
ibm data risk manager
41
ibm notes
35
ibm lotus domino mail server
28
ibm db2 universal database
23
ibm infosphere guardium z/os
23
ibm storage protect plus
23
ibm tivoli storage manager fastback
22
ibm global data engine
21
ibm cloud pak for security
19
ibm data virtualization on cloud pak for data
19
ibm watson query with cloud pak for data
19
ibm qradar security information and event manager
17
ibm security qradar
16
ibm security verify access oidc provider
16
ibm jdk
15
ibm rational doors next generation
12
ibm security verify governance - identity manager
12
ibm planning analytics cloud
11
ibm rational team concert
11
ibm cognos controller
10
ibm db2 warehouse
10
ibm engineering lifecycle management
10
ibm i2 analyst's notebook premium
10
ibm engineering workflow management (ewm)
9
ibm infosphere information server
9
ibm b2b sterling integrator
8
ibm cloud pak for business automation
8
ibm engineering lifecycle management (elm)
8
ibm engineering requirements management doors web access
8
ibm engineering test management (etm)
8
ibm informix dynamic database server
8
ibm iseries as/400
8
ibm lotus domino
8
ibm security access manager
8
ibm spectrum protect
8
ibm tivoli storage manager
8
ibm websphere
8
ibm data ontap
7
ibm aspera faspex on demand
6
ibm inotes
6
ibm maximo asset management
6
ibm security guardium key lifecycle manager
6
ibm engineering requirements quality assistant
5
ibm forms viewer
5
ibm rational doors web access
5
ibm rational quality manager (rqm)
5
ibm aspera faspex
4

Oracle UtilitiesCode Injection

critical
9.8
First published (updated )
CVE-2019-10173

maven/com.thoughtworks.xstream:xstreamCode Injection, OS Command Injection, Command Injection

critical
9.8
First published (updated )
CVE-2013-7285

redhat/golangBackticks not treated as string delimiters in html/template

critical
9.8
First published (updated )
CVE-2023-24538

redhat/golangImproper handling of JavaScript whitespace in html/template

critical
9.8
First published (updated )
CVE-2023-24540

IBM Cognos AnalyticsCertifi's removal of e-Tugra root certificate

critical
9.8
First published (updated )
CVE-2023-37920

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

TomcatApache Tomcat Improper Privilege Management Vulnerability

critical
9.8
Exploited
First published (updated )
CVE-2020-1938

Apache Portable RuntimeApache Portable Runtime (APR): Windows out-of-bounds write in apr_socket_sendv function

critical
9.8
First published (updated )
CVE-2022-28331

IBM Tivoli Workload SchedulerIBM Tivoli Workload Scheduler XML external entity injection

critical
10
First published (updated )
CVE-2022-22486

redhat/expatUse After Free

critical
9.8
First published (updated )
CVE-2022-40674

IBM Tivoli Workload SchedulerIBM Tivoli Workload Scheduler XML external entity injection

critical
9.1
First published (updated )
CVE-2022-38389

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

IBM WebSphere Application Server Feature Pack for Web ServicesIBM WebSphere Application Server code execution

critical
9.8
First published (updated )
CVE-2023-23477

F5 BIG-IP and BIG-IQ Centralized ManagementApache HTTP Server weakness with encoded question marks in backreferences

critical
9.8
First published (updated )
CVE-2024-38474

IBM Watson Knowledge CatalogIBM Watson Knowledge Catalog on Cloud Pak SQL injection

critical
9.8
First published (updated )
CVE-2022-41731

Apache Struts 2Apache Struts Remote Code Execution Vulnerability

critical
10
Exploited
First published (updated )
CVE-2017-5638

IBM Storage VirtualizeIBM Storage Virtualize vSphere Remote Plug-in information disclosure

critical
10
First published (updated )
CVE-2023-43029

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

IBM AIXIBM AIX command execution

critical
10
First published (updated )
CVE-2024-56346

IBM AIXIBM AIX command execution

critical
9.6
First published (updated )
CVE-2024-56347

npm/ellipticIn the Elliptic package 6.5.6 for Node.js, ECDSA signature malleability occurs because BER-encoded s…

critical
9.1
First published (updated )
CVE-2024-42461

IBM Data Virtualization on Cloud Pak for DataDOMPurify nesting-based mXSS

critical
10
First published (updated )
CVE-2024-47875

IBM Data Virtualization on Cloud Pak for DataDOMPurify vulnerable to tampering by prototype polution

critical
9.1
First published (updated )
CVE-2024-48910

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

IBM Data Virtualization on Cloud Pak for DataVersions of the package tough-cookie before 4.1.3 are vulnerable to Prototype Pollution due to impro…

critical
9.8
First published (updated )
CVE-2023-26136

ubuntu/node-ipSSRF

critical
9.8
First published (updated )
CVE-2023-42282

maven/org.apache.cxf:cxf-coreApache CXF SSRF Vulnerability using the Aegis databinding

critical
9.3
EPSS
0.04%
First published (updated )
CVE-2024-28752

IBM Cognos AnalyticsApache Avro Java SDK: Arbitrary Code Execution when reading Avro schema (Java SDK)

critical
9.8
First published (updated )
CVE-2024-47561

IBM Cognos AnalyticsApache Avro Java SDK: Memory when deserializing untrusted data in Avro Java SDK

critical
9.8
First published (updated )
CVE-2023-39410

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

SnakeyamlRemote Code execution in SnakeYAML

critical
9.8
First published (updated )
CVE-2022-1471

QiskitQiskit SDK code execution

critical
9.8
First published (updated )
CVE-2025-2000

Apple iOS, iPadOS, and watchOSInput Validation, Race Condition, Use After Free, XEE, Integer Overflow

critical
9.8
First published (updated )
CVE-2024-45490

F5 BIG-IP and BIG-IQ Centralized ManagementApache HTTP Server weakness in mod_rewrite when first segment of substitution matches filesystem path.

critical
9.1
First published (updated )
CVE-2024-38475

maven/org.apache.struts:struts2-coreApache Struts: File upload component had a directory traversal vulnerability

critical
9.8
First published (updated )
CVE-2023-50164

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203