Lucene search
HistoryFeb 13, 2015 - 2:59 a.m.
CVE-2014-4771
cve-2014-4771
ibm websphere mq
denial of service
queue-slot exhaustion
pcf query privileges
nvd
3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:N/I:N/A:P
4.1 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
62.1%
IBM WebSphere MQ 7.0.1 before 7.0.1.13, 7.1 before 7.1.0.6, 7.5 before 7.5.0.5, and 8 before 8.0.0.1 allows remote authenticated users to cause a denial of service (queue-slot exhaustion) by leveraging PCF query privileges for a crafted query.
Affected configurations
Node
ibmwebsphere_mqMatch7.0.1.0
ORibmwebsphere_mqMatch7.0.1.1
ORibmwebsphere_mqMatch7.0.1.2
ORibmwebsphere_mqMatch7.0.1.3
ORibmwebsphere_mqMatch7.0.1.4
ORibmwebsphere_mqMatch7.0.1.5
ORibmwebsphere_mqMatch7.0.1.6
ORibmwebsphere_mqMatch7.0.1.7
ORibmwebsphere_mqMatch7.0.1.8
ORibmwebsphere_mqMatch7.0.1.9
ORibmwebsphere_mqMatch7.0.1.10
ORibmwebsphere_mqMatch7.0.1.11
ORibmwebsphere_mqMatch7.0.1.12
ORibmwebsphere_mqMatch7.1
ORibmwebsphere_mqMatch7.1.0.1
ORibmwebsphere_mqMatch7.1.0.2
ORibmwebsphere_mqMatch7.1.0.3
ORibmwebsphere_mqMatch7.1.0.4
ORibmwebsphere_mqMatch7.1.0.5
ORibmwebsphere_mqMatch7.5
ORibmwebsphere_mqMatch7.5.0.1
ORibmwebsphere_mqMatch7.5.0.2
ORibmwebsphere_mqMatch7.5.0.3
ORibmwebsphere_mqMatch7.5.0.4
ORibmwebsphere_mqMatch8.0.0.0
Related
openvas
openvas
prion
prion
Design/Logic Flaw
2015-02-13 02:59:00
nvd
nvd
CVE-2014-4771
2015-02-13 02:59:00
cvelist
cvelist
CVE-2014-4771
2015-02-13 02:00:00
nessus
nessus
IBM WebSphere MQ 7.0 / 7.1 / 7.5 / 8.0 PCF Query DoS
2015-05-08 00:00:00
3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:N/I:N/A:P
4.1 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
62.1%
Related for CVE-2014-4771