Lucene search
IBMFA8529046BD5E3F3F937BCC850FE0749AB24A79FBFBE047B9939721EDE89F0D4HistoryApr 07, 2021 - 3:34 p.m.
Security Bulletin: IBM MQ AMQP Channels could allow an authenticated user to cause a denial of service due to an issue processing messages. (CVE-2020-4931)
2021-04-0715:34:23
www.ibm.com
8
ibm
mq
amqp
channel
denial of service
cve-2020-4931
EPSS
0.001
Percentile
32.8%
Summary
An issue was found within the AMQP Channel function of the IBM MQ queue manager which could allow an attacker to execute a denial of service attack against AMQP channels.
Vulnerability Details
CVEID:CVE-2020-4931
**DESCRIPTION:**IBM MQ AMQP Channels could allow an authenticated user to cause a denial of service due to an issue processing messages.
CVSS Base score: 6.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/191747 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H)
Affected Products and Versions
| Affected Product(s) | Version(s) |
|---|---|
| IBM MQ | 9.1 LTS |
| IBM MQ | 9.0 LTS |
| IBM MQ | 8.0 |
| IBM MQ | 9.2 CD |
| IBM MQ | 9.2 LTS |
Remediation/Fixes
This issue is addressed under APAR IT34485.
IBM MQ v8
IBM MQ v9.0 LTS
IBM MQ v9.1 LTS
IBM MQ v9.2 LTS
IBM MQ v9.2 CD
Workarounds and Mitigations
None
Related
cve
cve
CVE-2020-4931
2021-02-24 18:15:12
prion
prion
Denial of service
2021-02-24 18:15:00
ibm
ibm
cvelist
cvelist
CVE-2020-4931
2021-02-24 17:20:13
nvd
nvd
CVE-2020-4931
2021-02-24 18:15:12
EPSS
0.001
Percentile
32.8%
Related for FA8529046BD5E3F3F937BCC850FE0749AB24A79FBFBE047B9939721EDE89F0D4