Shodan
Vulnerabilities
Vulnerable Software
Ibm:  >> Mq Appliance  >> 9.2.0.0  Security Vulnerabilities
CVE-2022-22356
IBM MQ Appliance 9.2 CD and 9.2 LTS could allow an attacker to enumerate account credentials due to an observable discrepancy in valid and invalid login attempts. IBM X-Force ID: 220487.
CVSS Score
5.3
EPSS Score
0.002
Published
2022-04-05
CVE-2022-22316
IBM MQ Appliance 9.2 CD and 9.2 LTS could allow an authenticated and authorized user to cause a denial of service due to incorrectly configured authorization checks. IBM X-Force ID: 218276.
CVSS Score
5.3
EPSS Score
0.002
Published
2022-03-23
CVE-2021-38958
IBM MQ Appliance 9.2 CD and 9.2 LTS is affected by a denial of service attack caused by a concurrency issue. IBM X-Force ID: 212042
CVSS Score
5.1
EPSS Score
0.0
Published
2021-11-30
CVE-2021-38967
IBM MQ Appliance 9.2 CD and 9.2 LTS could allow a local privileged user to inject and execute malicious code. IBM X-Force ID: 212441.
CVSS Score
8.2
EPSS Score
0.0
Published
2021-11-30
CVE-2021-38999
IBM MQ Appliance could allow a local attacker to obtain sensitive information by inclusion of sensitive data within trace.
CVSS Score
5.1
EPSS Score
0.0
Published
2021-11-30
CVE-2021-39000
IBM MQ Appliance 9.2 CD and 9.2 LTS could allow a local attacker to obtain sensitive information by inclusion of sensitive data within diagnostics. IBM X-Force ID: 213215.
CVSS Score
5.9
EPSS Score
0.001
Published
2021-11-30
CVE-2021-29843
IBM MQ 9.1 LTS, 9.1 CD, 9.2 LTS, and 9.2CD is vulnerable to a denial of service attack caused by an issue processing message properties. IBM X-Force ID: 205203.
CVSS Score
5.3
EPSS Score
0.002
Published
2021-11-08
CVE-2020-4938
IBM MQ Appliance 9.1 and 9.2 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 191815.
CVSS Score
4.3
EPSS Score
0.001
Published
2021-07-12
CVE-2020-4682
IBM MQ 7.5, 8.0, 9.0, 9.1, 9.2 LTS, and 9.2 CD could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe deserialization of trusted data. An attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 186509.
CVSS Score
8.1
EPSS Score
0.03
Published
2021-01-28
CVE-2020-4869
IBM MQ Appliance 9.2 CD and 9.2 LTS is vulnerable to a denial of service, caused by a buffer overflow. A remote attacker could send a specially crafted SNMP query to cause the appliance to reload. IBM X-Force ID: 190831.
CVSS Score
5.3
EPSS Score
0.005
Published
2021-01-11


Products
Pricing
Contact Us

Shodan ® - All rights reserved