Lucene search
IBM0C0653BEF0536ECBA76ADA056C7FCB5F17DB0034DC6394252C95BF3B52AA8AB7HistoryApr 22, 2020 - 9:32 a.m.
Security Bulletin: IBM MQ Appliance is vulnerable to a denial of service attack due to an error in the Channel processing function. (CVE-2019-4762)
2020-04-2209:32:07
www.ibm.com
7
0.001 Low
EPSS
Percentile
36.0%
Summary
An error was identified in the channel processing logic that means a remote attacker could execute a denial of service attack against a queue manager.
Vulnerability Details
CVEID:CVE-2019-4762
**DESCRIPTION:**IBM MQ 9.0 and 9.1 is vulnerable to a denial of service attack due to an error in the Channel processing function. IBM X-Force ID: 173625.
CVSS Base score: 5.9
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/173625 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H)
Affected Products and Versions
| Affected Product(s) | Version(s) |
|---|---|
| IBM MQ Appliance | 9.1 LTS |
| IBM MQ Appliance | 9.1 CD |
Remediation/Fixes
IBM MQ and IBM MQ Appliance 9.1 LTS
IBM MQ and IBM MQ Appliance 9.1 CD
Workarounds and Mitigations
None
Related
veracode
veracode
Denial Of Service (DoS)
2022-02-14 07:01:32
cvelist
cvelist
CVE-2019-4762
2020-04-15 00:00:00
ibm
ibm
nvd
nvd
CVE-2019-4762
2020-04-16 16:15:13
cve
cve
CVE-2019-4762
2020-04-16 16:15:13
prion
prion
Design/Logic Flaw
2020-04-16 16:15:00
0.001 Low
EPSS
Percentile
36.0%
Related for 0C0653BEF0536ECBA76ADA056C7FCB5F17DB0034DC6394252C95BF3B52AA8AB7