Описание
IBM MQ Appliance 9.3 CD and LTS are vulnerable to a heap-based buffer overflow, caused by improper bounds checking. A remote authenticated attacker could overflow a buffer and execute arbitrary code on the system or cause the server to crash. IBM X-Force ID: 283137.
Ссылки
- Third Party Advisory
- Vendor Advisory
- Third Party Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 9.3.0.0 (включая) до 9.3.0.17 (исключая)Версия от 9.3.0.0 (включая) до 9.3.5 (исключая)
Одно из
cpe:2.3:a:ibm:mq_appliance:*:*:*:*:lts:*:*:*
cpe:2.3:a:ibm:mq_appliance:*:*:*:*:continuous_delivery:*:*:*
EPSS
Процентиль: 69%
0.00614
Низкий
7.5 High
CVSS3
Дефекты
CWE-122
Связанные уязвимости
CVSS3: 7.5
github
почти 2 года назад
IBM MQ Appliance 9.3 CD and LTS are vulnerable to a heap-based buffer overflow, caused by improper bounds checking. A remote authenticated attacker could overflow a buffer and execute arbitrary code on the system or cause the server to crash. IBM X-Force ID: 283137.
EPSS
Процентиль: 69%
0.00614
Низкий
7.5 High
CVSS3
Дефекты
CWE-122