Known vulnerabilities in IBM Corporation Cloud Pak for Applications

[]

Known vulnerabilities in IBM Corporation Cloud Pak for Applications

Vendor: IBM Corporation

Website: https://www.ibm.com/us-en

Total Security Bulletins: 15

Security bulletins (15)

Secuity bulletin	Severity	Status	Published
SB2026040815: Prototype pollution in IBM Cloud Pak for Applications	Medium	Patched	08.04.2026
SB2026040327: Weak password requirements in IBM Cloud Pak for Applications	Low	Patched	03.04.2026
SB2026040326: Information disclosure in IBM Cloud Pak for Applications	Low	Patched	03.04.2026
SB2026040325: Server-side request forgery in IBM Cloud Pak for Applications	Low	Patched	03.04.2026
SB2026031714: Improper access control in IBM Cloud Pak For Applications	Medium	Patched	17.03.2026
SB2026021308: Path traversal in IBM Cloud Pak for Applications	Low	Patched	13.02.2026
SB2025121821: Cross-site scripting in IBM Cloud Pak for Applications	Medium	Patched	18.12.2025
SB2025101325: Allocation of resources without limits or throttling in IBM Cloud Pak for Applications	Low	Patched	13.10.2025
SB2025091512: Use of insufficiently random values in IBM Cloud Pak for Applications	Medium	Patched	15.09.2025
SB2025090413: Resource exhaustion in IBM Cloud Pak for Applications	Medium	Patched Public exploit	04.09.2025
SB2025082918: Privilege Chaining in IBM Cloud Pak for Applications	High	Patched	29.08.2025
SB2025082917: Improper certificate validation in IBM Cloud Pak for Applications	Medium	Patched	29.08.2025
SB2025073047: Interpretation Conflict in IBM Cloud Pak for Applications	Medium	Patched	30.07.2025
SB2025072904: Stack-based buffer overflow in IBM Cloud Pak for Applications	High	Patched	29.07.2025
SB2025071409: Deserialization of untrusted data in IBM Cloud Pak for Applications	Critical	Patched	14.07.2025