IBM MQ Appliance has addressed a data corruption vulnerability.
CVEID:CVE-2020-4592
**DESCRIPTION:**IBM MQ could allow an authenticated user, under nondefault configuration to cause a data corruption attack due to an error when using segmented messages.
CVSS Base score: 5.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/184755 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N)
Affected Product(s) | Version(s) |
---|---|
IBM MQ Appliance | 9.1 LTS |
IBM MQ Appliance | 9.1 CD |
IBM MQ Appliance 9.1 LTS
Apply fixpack 9.1.0.6, or later maintenance
IBM MQ Appliance 9.1 CD
Upgrade to 9.2.0, or later maintenance*
None