COOEY // HUBcompliance · community · intelligence

FedRAMP catalog › IBM Cloud for Government

IBM Cloud for Government

IBM · package F1211011660

Current status
Authorized · High impact · since 2026-07-07
Service model
IaaS, PaaS
Marketplace
Rev5 · source: marketplace
Security posture
1 critical 7 high · 9 correlated CVEs

CMMC domains addressed which 800-171 families this product helps satisfy

SC · System and Communications Protection IA · Identification and Authentication CM · Configuration Management MP · Media Protection

Status timeline SCD2 history — the thing a spreadsheet can't answer

StatusImpactFromTo
Authorized High 2026-07-07 current

Authorizations

AgencyTypeDate
JAB AuthorizationJAB2019-11-14

Exposed CVEs correlated to this product

SeverityCVETitlePublished
high CVE-2026-3144 CVE-2026-3144: IBM API Connect 12.1.0.0 through 12.1.0.3 uses default credentials which could a 2026-07-08
critical CVE-2026-9074 CVE-2026-9074: IBM API Connect 10.0.8.0 through 10.0.8.9 and 12.1.0.0 through 12.1.0.3 contains 2026-07-08
high CVE-2026-11541 CVE-2026-11541: IBM WebSphere Application Server 9.0, and 8.5 and IBM WebSphere Application Serv 2026-06-30
high CVE-2026-11546 CVE-2026-11546: IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.7 is affected 2026-06-30
high CVE-2026-11714 CVE-2026-11714: IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.7 is affected 2026-06-30
high CVE-2026-13449 CVE-2026-13449: IBM Business Automation Manager Open Editions 9.0.0 through 9.4.2 is vulnerable 2026-06-30
high CVE-2026-13772 CVE-2026-13772: IBM WebSphere Extreme Scale 8.6.1.0 through 8.6.1.6 's Object Query Language eng 2026-06-30
medium CVE-2026-13773 CVE-2026-13773: IBM WebSphere Extreme Scale 8.6.1.0 through 8.6.1.6 Approximately 50 generated C 2026-06-30
high CVE-2026-9072 CVE-2026-9072: IBM WebSphere Application Server and IBM WebSphere Application Server Liberty - 2026-06-22