Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBMA50530ADEB9D2834B0B376E2ADF7E9E9B76C211E5B1B8F44D87EEA238B586A60
HistoryDec 22, 2020 - 3:19 p.m.

Security Bulletin: IBM MQ is vulnerable to a denial of service attack caused by an error processing connecting applications. (CVE-2020-4870)

2020-12-2215:19:52
www.ibm.com
14
ibm mq
denial of service
vulnerability
update
9.2.1
fixpack 9.2.0.1

EPSS

0.001

Percentile

50.9%

JSON

Summary

An error was found within the MQ queue manager channel processing code that could be exploited to cause a denial of service attack.

Vulnerability Details

CVEID:CVE-2020-4870
**DESCRIPTION:**IBM MQ is vulnerable to a denial of service attack caused by an error processing connecting applications.
CVSS Base score: 5.9
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/190833 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H)

Affected Products and Versions

Affected Product(s) Version(s)
IBM MQ 9.2 CD
IBM MQ 9.2 LTS
IBM MQ 9.1.4 CD
IBM MQ 9.1.5 CD

Remediation/Fixes

IBM MQ 9.2 LTS

Apply FixPack 9.2.0.1

IBM MQ 9.1 CD and 9.2 CD

Upgrade to IBM MQ 9.2.1

Workarounds and Mitigations

None

Related

ibm 1
cvelist 1
prion 1
nvd 1
cve 1
ibm
ibm
Security Bulletin: IBM MQ Appliance is affected by a denial of service vulnerability (CVE-2020-4870)
2020-12-18 14:10:12
cvelist
cvelist
CVE-2020-4870
2020-12-21 17:50:32
prion
prion
Denial of service
2020-12-21 18:15:00
nvd
nvd
CVE-2020-4870
2020-12-21 18:15:16
cve
cve
CVE-2020-4870
2020-12-21 18:15:16

EPSS

0.001

Percentile

50.9%

JSON
Related for A50530ADEB9D2834B0B376E2ADF7E9E9B76C211E5B1B8F44D87EEA238B586A60
ibm1cvelist1prion1nvd1cve1