ibm
Security Risk Profile
43
/100
mediumSecurity Risk Score
Comprehensive risk assessment based on 1000 vulnerabilities, EPSS scores, exploitation status, and remediation availability.
📅 Data spans from June 17, 2025 to present
1000
Total CVEs
279
Critical+High
7
Exploited
30
Unpatched
Threat Assessment
Avg CVSS
6.6
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
30
Critical/High
Risk Level
43/100
medium
⚠️ 7 Active Exploits📈 18 in Last 30 Days
Severity Distribution
Critical
48High
231Medium
349Low
30Exploit Likelihood
>50% chance
020-50%
05-20%
0<5%
60Age Distribution
Common Weaknesses (CWE)
1
XSS
68
2
Path Traversal
21
3
SSRF
19
4
Input Validation
16
5
Race Condition
12
Most Affected Products
1. IBM QRadar Security Information and Event Manager250
2. IBM Jazz Foundation238
3. IBM IBM® Db2®190
4. IBM Concert Software134
5. IBM Cloud Pak System125
Recent Vulnerabilities
See more →CVE-2025-71251
CVSS 7.5high
5/6/2026🔧 No Patch
CVE-2025-36122
CVSS 6.5medium
IBM® Db2® is vulnerable to a denial of service with a specially crafted query when stmtheap is set to automatic
4/30/2026
CVE-2026-4503
CVSS 7.5high
Unauthenticated Insecure Direct Object Reference (IDOR) Vulnerability in Langflow Desktop Image Download Endpoint
4/28/2026
CVE-2026-3346
CVSS 6.4medium
Stored Cross-Site Scripting (XSS) in Langflow Markdown Rendering via rehypeRaw
4/28/2026
CVE-2026-3340
CVSS 6.5medium
Server-Side Request Forgery (SSRF) in Langflow URL Component
4/28/2026
CVE-2026-4502
CVSS 6.5medium
Arbitrary File Write and Remote Code Execution Vulnerability in Langflow v2 API
4/28/2026
IBM-7271095
unknown
4/28/2026🔧 No Patch
IBM-7271096
unknown
4/28/2026🔧 No Patch
IBM-7271097
unknown
4/28/2026🔧 No Patch
IBM-7271099
unknown
4/28/2026🔧 No Patch
Monitor ibm in Real-Time
Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.