CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-2637

IBM WebSphere MQ 6.0 before 6.0.2.9 and 7.0 before 7.0.1.1 does not encrypt the username and password in the security parameters field, which allows remote attackers to obtain sensitive information by sniffing the network traffic from a .NET client application.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 51.1%

CVSS Severity

CVSS v2 Score 4.3

References

Products affected by CVE-2010-2637

Ibm » Websphere Mq » Version: 6.0

cpe:2.3:a:ibm:websphere_mq:6.0
Ibm » Websphere Mq » Version: 6.0.0.0

cpe:2.3:a:ibm:websphere_mq:6.0.0.0
Ibm » Websphere Mq » Version: 6.0.1.0

cpe:2.3:a:ibm:websphere_mq:6.0.1.0
Ibm » Websphere Mq » Version: 6.0.1.1

cpe:2.3:a:ibm:websphere_mq:6.0.1.1
Ibm » Websphere Mq » Version: 6.0.2.0

cpe:2.3:a:ibm:websphere_mq:6.0.2.0
Ibm » Websphere Mq » Version: 6.0.2.1

cpe:2.3:a:ibm:websphere_mq:6.0.2.1
Ibm » Websphere Mq » Version: 6.0.2.10

cpe:2.3:a:ibm:websphere_mq:6.0.2.10
Ibm » Websphere Mq » Version: 6.0.2.2

cpe:2.3:a:ibm:websphere_mq:6.0.2.2
Ibm » Websphere Mq » Version: 6.0.2.3

cpe:2.3:a:ibm:websphere_mq:6.0.2.3
Ibm » Websphere Mq » Version: 6.0.2.4

cpe:2.3:a:ibm:websphere_mq:6.0.2.4
Ibm » Websphere Mq » Version: 6.0.2.5

cpe:2.3:a:ibm:websphere_mq:6.0.2.5
Ibm » Websphere Mq » Version: 6.0.2.6

cpe:2.3:a:ibm:websphere_mq:6.0.2.6
Ibm » Websphere Mq » Version: 6.0.2.7

cpe:2.3:a:ibm:websphere_mq:6.0.2.7
Ibm » Websphere Mq » Version: 6.0.2.8

cpe:2.3:a:ibm:websphere_mq:6.0.2.8
Ibm » Websphere Mq » Version: 7.0

cpe:2.3:a:ibm:websphere_mq:7.0
Ibm » Websphere Mq » Version: 7.0.0.1

cpe:2.3:a:ibm:websphere_mq:7.0.0.1
Ibm » Websphere Mq » Version: 7.0.0.2

cpe:2.3:a:ibm:websphere_mq:7.0.0.2
Ibm » Websphere Mq » Version: 7.0.1.0

cpe:2.3:a:ibm:websphere_mq:7.0.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-2637

Products

Pricing

Contact Us