CVE-2015-1985
https://notcve.org/view.php?id=CVE-2015-1985
The queue manager on IBM MQ M2000 appliances before 8.0.0.4 allows local users to bypass an intended password requirement and read private keys by leveraging the existence of a stash file. El gestor de colas en dispositivos IBM MQ M2000 en versiones anteriores a 8.0.0.4 permite a usuarios locales eludir el requisito destinado a la contraseña y leer claves privadas aprovechando la existencia de un archivo stash. • http://www-01.ibm.com/support/docview.wss?uid=swg21971445 • CWE-284: Improper Access Control •
CVE-2015-7421
https://notcve.org/view.php?id=CVE-2015-7421
Unspecified vulnerability in GSKit on IBM MQ M2000 appliances before 8.0.0.4 allows remote attackers to obtain sensitive information via unknown vectors, a different vulnerability than CVE-2015-7420. Vulnerabilidad no especificada en GSKit en dispositivos IBM MQ M2000 en versiones anteriores a 8.0.0.4 permite a atacantes remotos obtener información sensible a través de vectores desconocidos, una vulnerabilidad diferente a CVE-2015-7420. • http://www-01.ibm.com/support/docview.wss?uid=isg3T1023277 http://www-01.ibm.com/support/docview.wss?uid=swg21971500 http://www.securityfocus.com/bid/82303 http://www.securitytracker.com/id/1034846 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2015-7420
https://notcve.org/view.php?id=CVE-2015-7420
Unspecified vulnerability in GSKit on IBM MQ M2000 appliances before 8.0.0.4 allows remote attackers to obtain sensitive information via unknown vectors, a different vulnerability than CVE-2015-7421. Vulnerabilidad no especificada en GSKit en dispositivos IBM MQ M2000 en versiones anteriores a 8.0.0.4 permite a atacantes remotos obtener información sensible a través de vectores desconocidos, una vulnerabilidad diferente a CVE-2015-7421. • http://www-01.ibm.com/support/docview.wss?uid=isg3T1023277 http://www-01.ibm.com/support/docview.wss?uid=swg21971500 http://www.securityfocus.com/bid/82301 http://www.securitytracker.com/id/1034846 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •