Integration Bus Security Vulnerabilities and Issues — Integration Bus CVE List

Lucene search

IbmIntegration Bus

3 matches found

CVE•added 2015/10/26 2:59 a.m.•36 views

CVE-2015-5011

IBM WebSphere Message Broker 8 before 8.0.0.6 and Integration Bus 9 before 9.0.0.4 do not check authorization for MQSISTARTMSGFLOW and MQSISTOPMSGFLOW commands, which allows local users to bypass intended access restrictions, and start or stop a service, by issuing a command.

3.2CVSS6.4AI score0.00124EPSS

CVE•added 2017/02/01 8:59 p.m.•34 views

CVE-2016-0394

IBM Integration Bus and WebSphere Message broker sets incorrect permissions for an object that could allow a local attacker to manipulate certain files.

3.3CVSS3.9AI score0.00049EPSS

CVE•added 2015/08/23 3:59 p.m.•32 views

CVE-2015-2018

IBM Integration Bus 9 and 10 before 10.0.0.1 and WebSphere Message Broker 7 before 7.0.0.8 and 8 before 8.0.0.7 do not ensure that the correct security profile is selected, which allows remote authenticated users to obtain sensitive information via unspecified vectors.

3.5CVSS5.7AI score0.00146EPSS