Identity & Access Management · head-to-head
BeyondTrust vs IBM Security Identity
On-prem IAM/IGA/PAM/MFA: directories, federation, privileged access, SSO. Counts are scoped to this segment and the selected published-date window. IBM Security Identity carries 4.7× the disclosed CVE volume of BeyondTrust. Volume reflects disclosure practice and install base as much as code quality — read it with the severity mix. Sourced from the NIST NVD; lower counts indicate a smaller disclosed vulnerability surface — not necessarily lower risk.
Disclosure record
Bars are normalized per row to the larger value; the leading count is emphasized.
| BeyondTrust | Metric | IBM Security Identity | ||
|---|---|---|---|---|
| 3 | Total CVEs | 14 | ||
| 1 | Critical | 2 | ||
| 1 | High | 7 | ||
| 1 | Medium | 4 | ||
| 0 | Low | 1 | ||
| 5 | Open in latest | 108 |
Risk profile
Each severity band as a share of the vendor's own total — strips out raw volume so the profiles compare directly.
BeyondTrust
33.3% critical- Critical
- 133.3%
- High
- 133.3%
- Medium
- 133.3%
- Low
- 00.0%
IBM Security Identity
14.3% critical- Critical
- 214.3%
- High
- 750.0%
- Medium
- 428.6%
- Low
- 17.1%
Recent activity
Latest in-window disclosures per vendor, newest first. Each ID links to its NVD record.
BeyondTrust
| CVE | Severity | CVSS | Published |
|---|---|---|---|
| CVE-2026-1731(opens NVD record) | Critical | 9.8 | Feb 6, 2026 |
| CVE-2025-6250(opens NVD record) | Medium | 6.7 | Jul 28, 2025 |
| CVE-2025-2297(opens NVD record) | High | 7.8 | Jul 28, 2025 |
IBM Security Identity
| CVE | Severity | CVSS | Published |
|---|---|---|---|
| CVE-2026-5926(opens NVD record) | Medium | 6.5 | Apr 23, 2026 |
| CVE-2026-1346(opens NVD record) | Critical | 9.3 | Apr 8, 2026 |
| CVE-2026-1343(opens NVD record) | High | 7.2 | Apr 8, 2026 |
| CVE-2026-1342(opens NVD record) | High | 8.5 | Apr 8, 2026 |
| CVE-2026-4364(opens NVD record) | Medium | 5.4 | Apr 1, 2026 |
| CVE-2026-4101(opens NVD record) | High | 8.1 | Apr 1, 2026 |
Track new CVEs for these vendors
Get an email the moment a new vulnerability is disclosed for the products you rely on.