Описание
IBM MQ 9.2 CD, 9.2 LTS, 9.3 CD, and 9.3 LTS is vulnerable to a denial of service attack caused by specially crafted PCF or MQSC messages. IBM X-Force ID: 240832.
Ссылки
- VDB EntryVendor Advisory
- Vendor Advisory
- VDB EntryVendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 9.2.0.0 (включая) до 9.2.0.8 (исключая)Версия от 9.2.0.0 (включая) до 9.2.5 (исключая)
Одно из
cpe:2.3:a:ibm:mq_appliance:*:*:*:*:lts:*:*:*
cpe:2.3:a:ibm:mq_appliance:*:*:*:*:continuous_delivery:*:*:*
cpe:2.3:a:ibm:mq_appliance:9.2.5:-:*:*:continuous_delivery:*:*:*
cpe:2.3:a:ibm:mq_appliance:9.2.5:cumulative_security_update_01:*:*:continuous_delivery:*:*:*
cpe:2.3:a:ibm:mq_appliance:9.2.5:cumulative_security_update_02:*:*:continuous_delivery:*:*:*
cpe:2.3:a:ibm:mq_appliance:9.2.5:cumulative_security_update_03:*:*:continuous_delivery:*:*:*
cpe:2.3:a:ibm:mq_appliance:9.3.0.0:*:*:*:continuous_delivery:*:*:*
cpe:2.3:a:ibm:mq_appliance:9.3.0.0:*:*:*:lts:*:*:*
cpe:2.3:a:ibm:mq_appliance:9.3.1:*:*:*:continuous_delivery:*:*:*
EPSS
Процентиль: 25%
0.00085
Низкий
6.5 Medium
CVSS3
7.5 High
CVSS3
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 7.5
github
почти 3 года назад
IBM MQ 9.2 CD, 9.2 LTS, 9.3 CD, and 9.3 LTS is vulnerable to a denial of service attack caused by specially crafted PCF or MQSC messages. IBM X-Force ID: 240832.
EPSS
Процентиль: 25%
0.00085
Низкий
6.5 Medium
CVSS3
7.5 High
CVSS3
Дефекты
NVD-CWE-noinfo