Описание
IBM MQ 9.0 LTS, 9.1 LTS, 9.2 LTS, 9.3 LTS and 9.3 CD, in certain configurations, is vulnerable to a denial of service attack caused by an error processing messages when an API Exit using MQBUFMH is used. IBM X-Force ID: 290259.
Ссылки
- VDB Entry
- Vendor Advisory
- VDB Entry
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ibm:mq:9.0.0.0:*:*:*:lts:*:*:*
cpe:2.3:a:ibm:mq:9.1.0.0:*:*:*:lts:*:*:*
cpe:2.3:a:ibm:mq:9.2.0:*:*:*:lts:*:*:*
cpe:2.3:a:ibm:mq:9.3.0:*:*:*:continuous_delivery:*:*:*
cpe:2.3:a:ibm:mq:9.3.0:*:*:*:lts:*:*:*
EPSS
Процентиль: 33%
0.00135
Низкий
5.9 Medium
CVSS3
7.5 High
CVSS3
Дефекты
CWE-770
Связанные уязвимости
CVSS3: 5.9
github
больше 1 года назад
IBM MQ 9.0 LTS, 9.1 LTS, 9.2 LTS, 9.3 LTS and 9.3 CD, in certain configurations, is vulnerable to a denial of service attack caused by an error processing messages when an API Exit using MQBUFMH is used. IBM X-Force ID: 290259.
EPSS
Процентиль: 33%
0.00135
Низкий
5.9 Medium
CVSS3
7.5 High
CVSS3
Дефекты
CWE-770