4 matches found
CVE-2021-38949
creationtimestamp| type| source ---|---|--- 2021-11-17 16:26:28+00:00| seen| https://t.me/cibsecurity/32485...
CVE-2021-38949
IBM MQ 7.5, 8.0, 9.0 LTS, 9.1 CD, and 9.1 LTS stores user credentials in plain clear text which can be read by a local user. IBM X-Force ID: 211403...
CVE-2021-38949
CVE-2021-38949 affects IBM MQ (and related IBM MQ components) across multiple versions (7.5, 8.0, 9.0 LTS, 9.1 CD, 9.1 LTS). The root cause is that credentials are stored in plain clear text in the product, which could be read by a local user. The IBM IBM MQ Java/JMS/diagnostic environments can e...
Security Bulletin: IBM MQ Java/JMS clients can inadvertently display cleartext credentials via diagnostic logs (CVE-2021-38949)
Summary An issue was idenitifed in IBM MQ Java and JMS clients where they could display clear text credentials in diagnostics log files automatically generated during system crashes. Vulnerability Details CVEID: CVE-2021-38949 DESCRIPTION: IBM MQ stores user credentials in plain clear text which...