CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2021-38999
https://notcve.org/view.php?id=CVE-2021-38999
IBM MQ Appliance could allow a local attacker to obtain sensitive information by inclusion of sensitive data within trace. IBM MQ Appliance podría permitir a un atacante local obtener información confidencial mediante la inclusión de datos confidenciales en el rastreo • https://exchange.xforce.ibmcloud.com/vulnerabilities/213214 https://www.ibm.com/support/pages/node/6519418 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.2EPSS: 0%CPEs: 2EXPL: 0CVE-2021-38967
https://notcve.org/view.php?id=CVE-2021-38967
IBM MQ Appliance 9.2 CD and 9.2 LTS could allow a local privileged user to inject and execute malicious code. IBM X-Force ID: 212441. IBM MQ Appliance versiones 9.2 CD y 9.2 LTS, podría permitir a un usuario local con privilegios inyectar y ejecutar código malicioso. IBM X-Force ID: 212441 • https://exchange.xforce.ibmcloud.com/vulnerabilities/212441 https://www.ibm.com/support/pages/node/6512826 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2021-38958
https://notcve.org/view.php?id=CVE-2021-38958
IBM MQ Appliance 9.2 CD and 9.2 LTS is affected by a denial of service attack caused by a concurrency issue. IBM X-Force ID: 212042 IBM MQ Appliance versiones 9.2 CD y 9.2 LTS, está afectado por un ataque de denegación de servicio causado por un problema de concurrencia. IBM X-Force ID: 212042 • https://exchange.xforce.ibmcloud.com/vulnerabilities/212043 https://www.ibm.com/support/pages/node/6519420 •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2021-29843
https://notcve.org/view.php?id=CVE-2021-29843
IBM MQ 9.1 LTS, 9.1 CD, 9.2 LTS, and 9.2CD is vulnerable to a denial of service attack caused by an issue processing message properties. IBM X-Force ID: 205203. IBM MQ versión 9.1 LTS, 9.1 CD, 9.2 LTS y 9.2 CD, es vulnerable a un ataque de denegación de servicio causado por un problema de procesamiento de las propiedades de los mensajes. IBM X-Force ID: 205203 • https://exchange.xforce.ibmcloud.com/vulnerabilities/205203 https://www.ibm.com/support/pages/node/6513681 •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2020-4938
https://notcve.org/view.php?id=CVE-2020-4938
IBM MQ Appliance 9.1 and 9.2 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 191815. IBM MQ Appliance versiones 9.1 y 9.2, es vulnerable a un ataque de tipo cross-site request forgery, lo que podría permitir a un atacante ejecutar acciones maliciosas y no autorizadas transmitidas desde un usuario en el que el sitio web confía. IBM X-Force ID: 191815 • https://exchange.xforce.ibmcloud.com/vulnerabilities/191815 https://www.ibm.com/support/pages/node/6466717 • CWE-352: Cross-Site Request Forgery (CSRF) •