Vulnerabilities
Vulnerable Software
Ibm:  >> Websphere Mq  >> 8.0.0.2  Security Vulnerabilities
runmqsc in IBM WebSphere MQ 8.x before 8.0.0.5 allows local users to bypass an intended +dsp authority requirement and obtain sensitive information via unspecified display commands.
CVSS Score
2.5
EPSS Score
0.0
Published
2016-06-26
runmqsc in IBM WebSphere MQ 8.x before 8.0.0.5 allows local users to bypass intended queue-manager command access restrictions by leveraging authority for +connect and +dsp.
CVSS Score
2.5
EPSS Score
0.001
Published
2016-06-26
The MQXR service in WMQ Telemetry in IBM WebSphere MQ 7.1 before 7.1.0.7, 7.5 through 7.5.0.5, and 8.0 before 8.0.0.4 uses world-readable permissions for a cleartext file containing the SSL keystore password, which allows local users to obtain sensitive information by reading this file.
CVSS Score
4.0
EPSS Score
0.0
Published
2016-02-08
MQ Explorer in IBM WebSphere MQ before 8.0.0.3 does not recognize the absence of the compatibility-mode option, which allows remote attackers to obtain sensitive information by sniffing the network for a session in which TLS is not used.
CVSS Score
4.3
EPSS Score
0.002
Published
2015-07-01


Contact Us

Shodan ® - All rights reserved