CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2021-39034
https://notcve.org/view.php?id=CVE-2021-39034
IBM MQ 9.1 LTS is vulnerable to a denial of service attack caused by an issue within the channel process. IBM X-Force ID: 213964. IBM MQ versión 9.1 LTS, es vulnerable a un ataque de denegación de servicio causado por un problema en el proceso del canal. IBM X-Force ID: 213964 • https://exchange.xforce.ibmcloud.com/vulnerabilities/213964 https://www.ibm.com/support/pages/node/6556466 •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2021-38950
https://notcve.org/view.php?id=CVE-2021-38950
IBM MQ on HPE NonStop 8.0.4 and 8.1.0 is vulnerable to a privilege escalation attack when SharedBindingsUserId is set to effective. IBM X-ForceID: 211404. IBM MQ en HPE NonStop versiones 8.0.4 y 8.1.0, es vulnerable a un ataque de escalada de privilegios cuando SharedBindingsUserId es establecido como efectivo. IBM X-ForceID: 211404 • https://exchange.xforce.ibmcloud.com/vulnerabilities/211404 https://www.ibm.com/support/pages/node/6525810 •
CVSS: 5.9EPSS: 0%CPEs: 2EXPL: 0CVE-2021-39000
https://notcve.org/view.php?id=CVE-2021-39000
IBM MQ Appliance 9.2 CD and 9.2 LTS could allow a local attacker to obtain sensitive information by inclusion of sensitive data within diagnostics. IBM X-Force ID: 213215. IBM MQ Appliance versiones 9.2 CD y 9.2 LTS, podría permitir a un atacante local obtener información confidencial mediante la inclusión de datos confidenciales en los diagnósticos. IBM X-Force ID: 213215 • https://exchange.xforce.ibmcloud.com/vulnerabilities/213215 https://www.ibm.com/support/pages/node/6519422 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2021-38999
https://notcve.org/view.php?id=CVE-2021-38999
IBM MQ Appliance could allow a local attacker to obtain sensitive information by inclusion of sensitive data within trace. IBM MQ Appliance podría permitir a un atacante local obtener información confidencial mediante la inclusión de datos confidenciales en el rastreo • https://exchange.xforce.ibmcloud.com/vulnerabilities/213214 https://www.ibm.com/support/pages/node/6519418 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.2EPSS: 0%CPEs: 2EXPL: 0CVE-2021-38967
https://notcve.org/view.php?id=CVE-2021-38967
IBM MQ Appliance 9.2 CD and 9.2 LTS could allow a local privileged user to inject and execute malicious code. IBM X-Force ID: 212441. IBM MQ Appliance versiones 9.2 CD y 9.2 LTS, podría permitir a un usuario local con privilegios inyectar y ejecutar código malicioso. IBM X-Force ID: 212441 • https://exchange.xforce.ibmcloud.com/vulnerabilities/212441 https://www.ibm.com/support/pages/node/6512826 • CWE-94: Improper Control of Generation of Code ('Code Injection') •