Ibm: >> Websphere Mq >> 9.0.2 Security Vulnerabilities
IBM WebSphere MQ 8.0 and 9.0 could allow an authenticated user to cause a shared memory leak by MQ applications using dynamic queues, which can lead to lack of resources for other MQ applications. IBM X-Force ID: 125144.
CVSS Score
4.3
EPSS Score
0.003
Published
2017-11-27
IBM WebSphere MQ 9.0.1 and 9.0.2 could allow an authenticated user with authority to send a specially crafted message that would cause a channel to remain in a running state but not process messages. IBM X-Force ID: 125146.
CVSS Score
6.5
EPSS Score
0.005
Published
2017-07-12
IBM WebSphere MQ 9.0.1 and 9.0.2 could allow a local user with ability to run or enable trace, to obtain sensitive information from WebSphere Application Server traces including user credentials. IBM X-Force ID: 125145.
CVSS Score
4.7
EPSS Score
0.001
Published
2017-07-10
IBM WebSphere MQ 9.0.1 and 9.0.2 Java/JMS application can incorrectly transmit user credentials in plain text. IBM X-Force ID: 126245.
CVSS Score
8.1
EPSS Score
0.003
Published
2017-07-10
IBM WebSphere MQ 9.0.2 could allow an authenticated user to potentially cause a denial of service by saving an incorrect channel status inquiry. IBM X-Force ID: 124354
CVSS Score
6.5
EPSS Score
0.005
Published
2017-07-06
Page 2