CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-0360

IBM Websphere MQ JMS 7.0.1, 7.1, 7.5, 8.0, and 9.0 client provides classes that deserialize objects from untrusted sources which could allow a malicious user to execute arbitrary Java code by adding vulnerable classes to the classpath. IBM Reference #: 1983457.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.01

EPSS Ranking 75.5%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

http://www-01.ibm.com/support/docview.wss?uid=swg21983457
http://www.securityfocus.com/bid/95317
http://www.securitytracker.com/id/1037561
http://www-01.ibm.com/support/docview.wss?uid=swg21983457
http://www.securityfocus.com/bid/95317
http://www.securitytracker.com/id/1037561

Products affected by CVE-2016-0360

Ibm » Websphere Mq Jms » Version: 7.0.1

cpe:2.3:a:ibm:websphere_mq_jms:7.0.1
Ibm » Websphere Mq Jms » Version: 7.1

cpe:2.3:a:ibm:websphere_mq_jms:7.1
Ibm » Websphere Mq Jms » Version: 7.5

cpe:2.3:a:ibm:websphere_mq_jms:7.5
Ibm » Websphere Mq Jms » Version: 8.0

cpe:2.3:a:ibm:websphere_mq_jms:8.0
Ibm » Websphere Mq Jms » Version: 9.0

cpe:2.3:a:ibm:websphere_mq_jms:9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-0360

Products

Pricing

Contact Us