Total
89 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2018-1371 | 1 Ibm | 1 Websphere Mq | 2024-11-21 | 4.0 MEDIUM | 6.5 MEDIUM |
| An IBM WebSphere MQ 8.0.0.8, 9.0.0.2, and 9.0.4 Client connecting to a MQ Queue Manager can cause a SIGSEGV in the AMQRMPPA channel process terminating it. IBM X-Force ID: 137771. | |||||
| CVE-2017-1786 | 1 Ibm | 1 Websphere Mq | 2024-11-21 | 3.5 LOW | 5.3 MEDIUM |
| IBM WebSphere MQ 8.0 through 8.0.0.8 and 9.0 through 9.0.4 under special circumstances could allow an authenticated user to consume all resources due to a memory leak resulting in service loss. IBM X-Force ID: 136975. | |||||
| CVE-2017-1747 | 1 Ibm | 1 Websphere Mq | 2024-11-21 | 4.0 MEDIUM | 5.3 MEDIUM |
| A specially crafted message could cause a denial of service in IBM WebSphere MQ 9.0, 9.0.0.1, 9.0.0.2, 9.0.1, 9.0.2, 9.0.3, and 9.0.4 applications consuming messages that it needs to perform data conversion on. IBM X-Force ID: 135520. | |||||
| CVE-2017-1699 | 1 Ibm | 1 Websphere Mq | 2024-11-21 | 3.6 LOW | 3.3 LOW |
| IBM MQ Managed File Transfer Agent 8.0 and 9.0 sets insecure permissions on certain files it creates. A local attacker could exploit this vulnerability to modify or delete data contained in the files with an unknown impact. IBM X-Force ID: 134391. | |||||
| CVE-2017-1612 | 1 Ibm | 1 Websphere Mq | 2024-11-21 | 4.6 MEDIUM | 7.8 HIGH |
| IBM WebSphere MQ 7.0, 7.1, 7.5, 8.0, and 9.0 service trace module could be used to execute untrusted code under 'mqm' user. IBM X-Force ID: 132953. | |||||
| CVE-2017-1557 | 1 Ibm | 1 Websphere Mq | 2024-11-21 | 4.0 MEDIUM | 4.3 MEDIUM |
| IBM WebSphere MQ 8.0 and 9.0 could allow an authenticated user with authority to send a specially crafted request that could cause a channel process to cease processing further requests. IBM X-Force ID: 131547. | |||||
| CVE-2015-1957 | 1 Ibm | 1 Websphere Mq | 2024-11-21 | 3.5 LOW | 5.3 MEDIUM |
| IBM WebSphere MQ 7.5.x before 7.5.0.6 and 8.0.x before 8.0.0.3 allows remote authenticated users to obtain sensitive information via a man-in-the-middle attack, related to duplication of message data in cleartext outside the protected payload. IBM X-Force ID: 103482. | |||||
| CVE-2012-4863 | 1 Ibm | 1 Websphere Mq | 2024-11-21 | 4.0 MEDIUM | 6.5 MEDIUM |
| IBM WebSphere MQ 7.1 and 7.5: Queue manager has a DoS vulnerability | |||||
| CVE-2012-2201 | 1 Ibm | 1 Websphere Mq | 2024-11-21 | N/A | 7.5 HIGH |
| IBM WebSphere MQ 7.1 is vulnerable to a denial of service, caused by an error when handling user ids. A remote attacker could exploit this vulnerability to bypass the security configuration setup on a SVRCONN channel and flood the queue manager. | |||||