CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

IBM : Vulnerability Statistics

Vulnerability Feeds & Widgets

Vulnerability Trends Over Time

Year # of Vulnerabilities DoS Code Execution Overflow Memory Corruption Sql Injection XSS Directory Traversal Http Response Splitting Bypass something Gain Information Gain Privileges CSRF File Inclusion # of exploits
1999 22 3 4 5 5
2000 17 2 3 4 1 4
2001 59 16 19 19 2 3 2 1 10
2002 42 13 10 20 1 2 2 1 4
2003 33 8 14 16 1 9
2004 54 9 16 12 1 4 3 1 10
2005 81 18 26 23 5 1 1 4 8 5
2006 91 20 19 14 5 3 2 8 8
2007 119 15 27 40 2 2 15 2 1 3 11 28 1 1
2008 137 27 28 30 1 1 16 6 17 23
2009 145 29 13 17 2 1 17 1 15 20 7 2
2010 168 47 23 21 1 1 27 14 16 7 2 11
2011 143 38 30 25 2 22 2 9 14 6 1 2
2012 160 22 26 11 6 32 7 1 10 24 8 8 4
2013 371 28 42 24 10 114 7 1 27 59 25 14 1 1
2014 421 35 36 7 12 119 11 6 43 90 10 28 6
2015 303 42 38 29 2 4 70 7 4 31 75 17 11
2016 374 35 36 16 8 96 10 2 29 97 12 17
2017 641 28 41 10 1 18 210 7 3 6 161 10 24
2018 594 22 43 1 9 185 11 2 22 148 9 16
2019 444 17 26 5 8 110 13 2 9 84 9 14 1
2020 455 30 52 13 12 12 83 8 1 19 104 3 12
2021 370 17 19 9 3 103 3 7 71 5 11
Total 5244 521 591 371 21 99 1237 98 25 261 1011 234 161 3 24
% Of All 9.9 11.3 7.1 0.4 1.9 23.6 1.9 0.5 5.0 19.3 4.5 3.1 0.1

Warning : Vulnerabilities with publish dates before 1999 are not included in this table and chart. (Because there are not many of them and they make the page look bad; and they may not be actually published in those years.)

Vulnerabilities By Year
22
17
59
42
33
54
81
91
119
137
145
168
143
160
371
421
303
374
641
594
444
455
370
  1999 22
2000 17
2001 59
2002 42
2003 33
2004 54
2005 81
2006 91
2007 119
2008 137
2009 145
2010 168
2011 143
2012 160
2013 371
2014 421
2015 303
2016 374
2017 641
2018 594
2019 444
2020 455
2021 370
Vulnerabilities By Type
521
591
371
234
261
1237
98
1011
99
25
21
161
3
  Denial of Service 521
Execute Code 591
Overflow 371
Gain Privilege 234
Bypass Something 261
XSS 1237
Directory Traversal 98
Gain Information 1011
Sql Injection 99
Http Response Splitting 25
Memory Corruption 21
CSRF 161
File Inclusion 3

Click on legend names to show/hide lines for vulnerability types
If you can't see MS Office style charts above then it's time to upgrade your browser!
P.S: Charts may not be displayed properly especially if there are only a few data points.

This page lists vulnerability statistics for all products of IBM. Vulnerability statistics provide a quick overview for security vulnerabilities related to software products of this vendor. You can view products of this vendor or security vulnerabilities related to products of IBM.

CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.