Ibm: >> Websphere Mq >> 8.0.0.5 Security Vulnerabilities
IBM WebSphere MQ 8.0 and 9.0 could allow an authenticated user to cause a denial of service to the MQXR channel when trace is enabled. IBM X-Force ID: 121155.
CVSS Score
5.3
EPSS Score
0.004
Published
2017-06-21
IBM WebSphere MQ 8.0 could allow an authenticated user with queue manager permissions to cause a segmentation fault which would result in the box having to be rebooted to resume normal operations. IBM Reference #: 1998663.
CVSS Score
6.5
EPSS Score
0.003
Published
2017-03-07
IBM WebSphere MQ 8.0 could allow an authenticated user with authority to create a cluster object to cause a denial of service to MQ clustering. IBM Reference #: 1998647.
CVSS Score
3.1
EPSS Score
0.003
Published
2017-02-24
IBM WebSphere MQ 8.0 could allow an authenticated user to crash the MQ channel due to improper data conversion handling. IBM Reference #: 1998661.
CVSS Score
6.5
EPSS Score
0.005
Published
2017-02-22
Under non-standard configurations, IBM WebSphere MQ might send password data in clear text over the network. This data could be intercepted using man in the middle techniques.
CVSS Score
5.9
EPSS Score
0.002
Published
2017-02-22
IBM WebSphere MQ 8.0 could allow an authenticated user with access to the queue manager and queue, to deny service to other channels running under the same process. IBM Reference #: 1998649.
CVSS Score
6.5
EPSS Score
0.003
Published
2017-02-22
IBM WebSphere MQ 8.0 could allow an authenticated user with access to the queue manager to bring down MQ channels using specially crafted HTTP requests. IBM Reference #: 1998648.
CVSS Score
6.5
EPSS Score
0.002
Published
2017-02-22
Page 3