CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2022-22316
https://notcve.org/view.php?id=CVE-2022-22316
23 Mar 2022 — IBM MQ Appliance 9.2 CD and 9.2 LTS could allow an authenticated and authorized user to cause a denial of service due to incorrectly configured authorization checks. IBM X-Force ID: 218276. IBM MQ Appliance versiones 9.2 CD y 9.2 LTS, podría permitir a un usuario autenticado y autorizado causar una denegación de servicio debido a comprobaciones de autorización configuradas incorrectamente. IBM X-Force ID: 218276 • https://exchange.xforce.ibmcloud.com/vulnerabilities/218276 •
CVSS: 5.9EPSS: 0%CPEs: 2EXPL: 0CVE-2021-39000
https://notcve.org/view.php?id=CVE-2021-39000
30 Nov 2021 — IBM MQ Appliance 9.2 CD and 9.2 LTS could allow a local attacker to obtain sensitive information by inclusion of sensitive data within diagnostics. IBM X-Force ID: 213215. IBM MQ Appliance versiones 9.2 CD y 9.2 LTS, podría permitir a un atacante local obtener información confidencial mediante la inclusión de datos confidenciales en los diagnósticos. IBM X-Force ID: 213215 • https://exchange.xforce.ibmcloud.com/vulnerabilities/213215 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2021-38999
https://notcve.org/view.php?id=CVE-2021-38999
30 Nov 2021 — IBM MQ Appliance could allow a local attacker to obtain sensitive information by inclusion of sensitive data within trace. IBM MQ Appliance podría permitir a un atacante local obtener información confidencial mediante la inclusión de datos confidenciales en el rastreo • https://exchange.xforce.ibmcloud.com/vulnerabilities/213214 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.2EPSS: 0%CPEs: 2EXPL: 0CVE-2021-38967
https://notcve.org/view.php?id=CVE-2021-38967
30 Nov 2021 — IBM MQ Appliance 9.2 CD and 9.2 LTS could allow a local privileged user to inject and execute malicious code. IBM X-Force ID: 212441. IBM MQ Appliance versiones 9.2 CD y 9.2 LTS, podría permitir a un usuario local con privilegios inyectar y ejecutar código malicioso. IBM X-Force ID: 212441 • https://exchange.xforce.ibmcloud.com/vulnerabilities/212441 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2021-38958
https://notcve.org/view.php?id=CVE-2021-38958
30 Nov 2021 — IBM MQ Appliance 9.2 CD and 9.2 LTS is affected by a denial of service attack caused by a concurrency issue. IBM X-Force ID: 212042 IBM MQ Appliance versiones 9.2 CD y 9.2 LTS, está afectado por un ataque de denegación de servicio causado por un problema de concurrencia. IBM X-Force ID: 212042 • https://exchange.xforce.ibmcloud.com/vulnerabilities/212043 •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2021-29843
https://notcve.org/view.php?id=CVE-2021-29843
08 Nov 2021 — IBM MQ 9.1 LTS, 9.1 CD, 9.2 LTS, and 9.2CD is vulnerable to a denial of service attack caused by an issue processing message properties. IBM X-Force ID: 205203. IBM MQ versión 9.1 LTS, 9.1 CD, 9.2 LTS y 9.2 CD, es vulnerable a un ataque de denegación de servicio causado por un problema de procesamiento de las propiedades de los mensajes. IBM X-Force ID: 205203 • https://exchange.xforce.ibmcloud.com/vulnerabilities/205203 •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2020-4938
https://notcve.org/view.php?id=CVE-2020-4938
12 Jul 2021 — IBM MQ Appliance 9.1 and 9.2 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 191815. IBM MQ Appliance versiones 9.1 y 9.2, es vulnerable a un ataque de tipo cross-site request forgery, lo que podría permitir a un atacante ejecutar acciones maliciosas y no autorizadas transmitidas desde un usuario en el que el sitio web confía. IBM X-Force ID: 191815 • https://exchange.xforce.ibmcloud.com/vulnerabilities/191815 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 10.0EPSS: 1%CPEs: 47EXPL: 0CVE-2020-4682
https://notcve.org/view.php?id=CVE-2020-4682
28 Jan 2021 — IBM MQ 7.5, 8.0, 9.0, 9.1, 9.2 LTS, and 9.2 CD could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe deserialization of trusted data. An attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 186509. IBM MQ versiones 7.5, 8.0, 9.0, 9.1, 9.2 LTS y 9.2 CD, podrían permitir a un atacante remoto ejecutar código arbitrario en el sistema, causado por una deserialización no segura de datos confiables. Un atacante podría explotar ... • https://exchange.xforce.ibmcloud.com/vulnerabilities/186509 • CWE-502: Deserialization of Untrusted Data •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-4869
https://notcve.org/view.php?id=CVE-2020-4869
11 Jan 2021 — IBM MQ Appliance 9.2 CD and 9.2 LTS is vulnerable to a denial of service, caused by a buffer overflow. A remote attacker could send a specially crafted SNMP query to cause the appliance to reload. IBM X-Force ID: 190831. IBM MQ Appliance versiones 9.2 CD y 9.2 LTS, es vulnerable a una denegación de servicio, causada por un desbordamiento del búfer. Un atacante remoto podría enviar una consulta SNMP especialmente diseñada para causar que el dispositivo se recargue. • https://exchange.xforce.ibmcloud.com/vulnerabilities/190831 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2020-4465
https://notcve.org/view.php?id=CVE-2020-4465
28 Jul 2020 — IBM MQ, IBM MQ Appliance, and IBM MQ for HPE NonStop 8.0, 9.1 CD, and 9.1 LTS is vulnerable to a buffer overflow vulnerability due to an error within the channel processing code. A remote attacker could overflow the buffer using an older client and cause a denial of service. IBM X-Force ID: 181562. IBM MQ, IBM MQ Appliance e IBM MQ para HPE NonStop versiones 8.0, 9.1 CD y 9.1 LTS, es susceptible a una vulnerabilidad de desbordamiento de búfer debido a un error dentro del código de procesamiento de canal. Un... • https://exchange.xforce.ibmcloud.com/vulnerabilities/181562 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •