Known vulnerabilities in IBM Corporation Enterprise Application Runtimes

[]

Known vulnerabilities in IBM Corporation Enterprise Application Runtimes

Vendor: IBM Corporation

Website: https://www.ibm.com/us-en

Total Security Bulletins: 15

Security bulletins (15)

Secuity bulletin	Severity	Status	Published
SB2026040816: Prototype pollution in IBM Enterprise Application Runtimes	Medium	Patched	08.04.2026
SB2026040610: Server-side request forgery in IBM Enterprise Application Runtimes	Low	Patched	06.04.2026
SB2026040329: Information disclosure in IBM Enterprise Application Runtimes	Low	Patched	03.04.2026
SB2026040328: Weak password requirements in IBM Enterprise Application Runtimes	Low	Patched	03.04.2026
SB2026031713: Improper access control in IBM Enterprise Application Runtimes	Medium	Patched	17.03.2026
SB2026021209: Path traversal in IBM Enterprise Application Runtimes	Low	Patched	12.02.2026
SB2025121822: Cross-site scripting in IBM Enterprise Application Runtimes	Medium	Patched	18.12.2025
SB2025101326: Allocation of resources without limits or throttling in IBM Enterprise Application Runtimes	Low	Patched	13.10.2025
SB2025091513: Use of insufficiently random values in IBM Enterprise Application Runtimes	Medium	Patched	15.09.2025
SB2025090411: Resource exhaustion in IBM Enterprise Application Runtimes	Medium	Patched Public exploit	04.09.2025
SB2025082921: Privilege Chaining in IBM Enterprise Application Runtimes	High	Patched	29.08.2025
SB2025082920: Improper certificate validation in IBM Enterprise Application Runtimes	Medium	Patched	29.08.2025
SB2025073046: Interpretation Conflict in IBM Enterprise Application Runtimes	Medium	Patched	30.07.2025
SB2025072905: Stack-based buffer overflow in IBM Enterprise Application Runtimes	High	Patched	29.07.2025
SB2025071410: Deserialization of untrusted data in IBM Enterprise Application Runtimes	Critical	Patched	14.07.2025