Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM35D1E45A6FF037C1540CB831E6C3246FD914D1D2E5779992569AB888C7FF905D
HistoryJul 23, 2020 - 9:33 p.m.

Security Bulletin: IBM MQ Appliance is affected by an information disclosure vulnerability (CVE-2020-4498)

2020-07-2321:33:28
www.ibm.com
5

0.0004 Low

EPSS

Percentile

5.1%

JSON

Summary

IBM MQ Appliance has resovled an information disclosure vulnerability.

Vulnerability Details

CVEID:CVE-2020-4498
**DESCRIPTION:**IBM MQ could allow a local privileged user to obtain highly sensitve information due to inclusion of data within trace files.
CVSS Base score: 4.1
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/182118 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N)

Affected Products and Versions

Affected Product(s) Version(s)
IBM MQ Appliance 9.1 LTS
IBM MQ Appliance 9.1 CD

Remediation/Fixes

IBM MQ Appliance 9.1 LTS

Apply fixpack 9.1.0.6, or later.

IBM MQ Appliance 9.1 CD

Apply IBM MQ Appliance 9.2, or later.

Workarounds and Mitigations

None

Related

cve 1
veracode 1
prion 1
nvd 1
cvelist 1
nessus 1
ibm 1
cve
cve
CVE-2020-4498
2020-07-27 14:15:12
veracode
veracode
Information Disclosure
2022-02-16 06:53:23
prion
prion
Information disclosure
2020-07-27 14:15:00
nvd
nvd
CVE-2020-4498
2020-07-27 14:15:12
cvelist
cvelist
CVE-2020-4498
2020-07-23 00:00:00
nessus
nessus
IBM MQ 9.1.x < 9.2 CD / 9.1.0.x < 9.1.0.6 LTS Information Disclosure
2020-07-31 00:00:00
ibm
ibm
Security Bulletin: App Connect Enterprise Certified Container Integration Servers could allow information exposure when using MQ (CVE-2020-4498)
2020-12-10 14:36:32

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for 35D1E45A6FF037C1540CB831E6C3246FD914D1D2E5779992569AB888C7FF905D
cve1veracode1prion1nvd1cvelist1nessus1ibm1