IBM
Security Scorecard
Score
25F
Total CVEs
299
Patch Rate
6%
19 patched
Avg Response
-
days to patch
Critical Gaps
38
exploitable, no detection
Severity Breakdown
Critical1
High144
Medium117
Low31
Patch Status
Patched19 (6%)
Partial/Workaround3 (1%)
Unpatched277 (93%)
CVEs (302)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2025-36361 | IBM App Connect Enterprise Authorization Bypass | MEDIUM | 6.3 | 56d | Unpatched |
| CVE-2025-27906 | IBM Content Navigator LFI Vulnerability | MEDIUM | 5.3 | 67d | Unpatched |
| CVE-2025-33096 | DOORS Next Denial of Service | MEDIUM | 6.5 | 69d | Unpatched |
| CVE-2025-36225 | Aspera Faspex Vulnerability | MEDIUM | 4.3 | - | Patched |
| CVE-2025-36171 | IBM Aspera Faspex Denial of Service Vulnerability | MEDIUM | 4.9 | - | Patched |
| CVE-2025-36355 | IBM Security Verify Access Vulnerability | HIGH | 8.5 | 70d | Unpatched |
| CVE-2023-49881 | IBM Transformation Extender Advanced Vulnerability | MEDIUM | 6.3 | 81d | Unpatched |
| CVE-2025-36262 | IBM Planning Analytics Local | MEDIUM | 4.9 | - | Patched |
| CVE-2025-36132 | IBM Planning Analytics Cross-Site Scripting | MEDIUM | 5.4 | - | Patched |
| CVE-2025-33116 | IBM Watson Studio on Cloud Pak for Data Cross-Site Scripting Vulnerability | MEDIUM | 4.4 | 88d | Unpatched |