IBM

Security Scorecard

Score

25F

Total CVEs

299

Patch Rate

6%

19 patched

Avg Response

-

days to patch

Critical Gaps

38

exploitable, no detection

Severity Breakdown

Critical1

High144

Medium117

Low31

Patch Status

Patched19 (6%)

Partial/Workaround3 (1%)

Unpatched277 (93%)

CVEs (302)

CVE ID	Title	Severity	Score	Days	Patch
CVE-2025-33012	Db2 Account Lockout Bypass	MEDIUM	6.3	39d	Unpatched
CVE-2025-36006	IBM Db2 Resource Denial of Service Vulnerability	MEDIUM	6.5	39d	Unpatched
CVE-2025-36185	IBM Db2 Denial of Service Vulnerability	MEDIUM	6.2	39d	Unpatched
CVE-2025-36135	IBM Sterling B2B Integrator Cross-Site Scripting Vulnerability	MEDIUM	5.4	39d	Unpatched
CVE-2025-36131	Db2 Credential Exposure	MEDIUM	4.6	39d	Unpatched
CVE-2025-36136	IBM Db2 Denial of Service Vulnerability	MEDIUM	5.1	39d	Unpatched
CVE-2024-47118	Db2 Denial of Service Vulnerability	MEDIUM	6.5	39d	Unpatched
CVE-2025-33110	HTML Injection in IBM OpenPages	MEDIUM	5.4	40d	Unpatched
CVE-2025-36093	IBM Cloud Pak For Business Automation Vulnerability	MEDIUM	4.8	-	Patched
CVE-2025-36172	Netty Denial of Service Vulnerability	MEDIUM	6.4	43d	Unpatched