CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-26284

IBM MQ Certified Container 9.3.0.1 through 9.3.0.3 and 9.3.1.0 through 9.3.1.1 could allow authenticated users with the cluster to be granted administration access to the MQ console due to improper access controls. IBM X-Force ID: 248417.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 66.2%

CVSS Severity

CVSS v3 Score 7.5

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/248417
https://www.ibm.com/support/pages/node/6960201
https://exchange.xforce.ibmcloud.com/vulnerabilities/248417
https://www.ibm.com/support/pages/node/6960201

Products affected by CVE-2023-26284

Ibm » Mq Certified Container » Version: 9.3.0.1

cpe:2.3:a:ibm:mq_certified_container:9.3.0.1
Ibm » Mq Certified Container » Version: 9.3.0.3

cpe:2.3:a:ibm:mq_certified_container:9.3.0.3
Ibm » Mq Certified Container » Version: 9.3.1.0

cpe:2.3:a:ibm:mq_certified_container:9.3.1.0
Ibm » Mq Certified Container » Version: 9.3.1.1

cpe:2.3:a:ibm:mq_certified_container:9.3.1.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-26284

Products

Pricing

Contact Us