3 matches found
CVE-2022-22356
CVE-2022-22356 affects IBM MQ Appliance 9.2 CD and 9.2 LTS, enabling an attacker to enumerate account credentials due to a discrepancy in handling valid vs. invalid login attempts. The connected IBM security bulletin confirms the issue and provides remediation: apply the IT40182 fix (interim firm...
Security Bulletin: IBM MQ Appliance affected by account enumeration and denial of service vulnerabilities (CVE-2022-22356 and CVE-2022-22355)
Summary IBM MQ Appliance has resolved account enumeration and denial of service vulnerabilities. Vulnerability Details CVEID: CVE-2022-22356 DESCRIPTION: IBM DataPower Gateway could allow an attacker to enumerate account credentials due to an observable discrepancy in valid and invalid login...
CVE-2022-22356
IBM MQ Appliance 9.2 CD and 9.2 LTS could allow an attacker to enumerate account credentials due to an observable discrepancy in valid and invalid login attempts. IBM X-Force ID: 220487...