NotCVE - vendor:"Ibm" product:"Mq" version:"9.2.1.0"

6 results (0.003 seconds)

CVSS: 7.5EPSS: 0%CPEs: 17EXPL: 0

CVE-2023-28513 – IBM MQ denial of service

https://notcve.org/view.php?id=CVE-2023-28513

IBM MQ 9.0 LTS, 9.1 LTS, 9.2 LTS, 9.3 LTS, 9.2 CD, and 9.3 CD and IBM MQ Appliance 9.2 LTS, 9.3 LTS, 9.2 CD, and 9.2 LTS, under certain configurations, is vulnerable to a denial of service attack caused by an error processing messages. IBM X-Force ID: 250397. • https://exchange.xforce.ibmcloud.com/vulnerabilities/250397 https://www.ibm.com/support/pages/node/7007421 https://www.ibm.com/support/pages/node/7007731 • CWE-20: Improper Input Validation •

CVSS: 5.5EPSS: 0%CPEs: 13EXPL: 0

CVE-2023-28950 – IBM MQ information disclosure

https://notcve.org/view.php?id=CVE-2023-28950

IBM MQ 8.0, 9.0, 9.1, 9.2, and 9.3 could disclose sensitive user information from a trace file if that functionality has been enabled. IBM X-Force ID: 251358. • https://exchange.xforce.ibmcloud.com/vulnerabilities/251358 https://https://www.ibm.com/support/pages/node/6985837 •

CVSS: 4.0EPSS: 0%CPEs: 14EXPL: 0

CVE-2022-42436 – IBM MQ information disclosure

https://notcve.org/view.php?id=CVE-2022-42436

IBM MQ 8.0.0, 9.0.0, 9.1.0, 9.2.0, 9.3.0 Managed File Transfer could allow a local user to obtain sensitive information from diagnostic files. IBM X-Force ID: 238206. • https://exchange.xforce.ibmcloud.com/vulnerabilities/238206 https://www.ibm.com/support/pages/node/6909467 •

CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0

CVE-2022-22321

https://notcve.org/view.php?id=CVE-2022-22321

IBM MQ Appliance 9.2 CD and 9.2 LTS local messaging users stored with a password hash that provides insufficient protection. IBM X-Force ID: 218368. Los usuarios de mensajería local de IBM MQ Appliance versiones 9.2 CD y 9.2 LTS, son almacenados con un hash de contraseña que proporciona una protección insuficiente. IBM X-Force ID: 218368. • https://exchange.xforce.ibmcloud.com/vulnerabilities/218368 https://www.ibm.com/support/pages/node/6560042 • CWE-326: Inadequate Encryption Strength •

CVSS: 5.6EPSS: 0%CPEs: 2EXPL: 0

CVE-2021-38986

https://notcve.org/view.php?id=CVE-2021-38986

IBM MQ Appliance 9.2 CD and 9.2 LTS does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 212942. IBM MQ Appliance versiones 9.2 CD y 9.2 LTS, no invalida la sesión tras el cierre de sesión, lo que podría permitir a un usuario autenticado hacerse pasar por otro usuario en el sistema. IBM X-Force ID: 212942. • https://exchange.xforce.ibmcloud.com/vulnerabilities/212942 https://www.ibm.com/support/pages/node/6560032 • CWE-613: Insufficient Session Expiration •

1 2