Mq Security Vulnerabilities and Issues — Mq CVE List

Lucene search

IbmMq

5 matches found

CVE•added 2024/06/28 6:15 p.m.•68 views

CVE-2024-31912

IBM MQ 9.3 LTS and 9.3 CD could allow an authenticated user to escalate their privileges under certain configurations due to incorrect privilege assignment. IBM X-Force ID: 289894.

8.8CVSS8AI score0.00111EPSS

CVE•added 2018/11/13 3:29 p.m.•54 views

CVE-2018-1792

IBM WebSphere MQ 8.0.0.0 through 8.0.0.10, 9.0.0.0 through 9.0.0.5, 9.0.1 through 9.0.5, and 9.1.0.0 could allow a local user to inject code that could be executed with root privileges. IBM X-Force ID: 148947.

8.8CVSS7.2AI score0.00153EPSS

CVE•added 2017/07/10 4:29 p.m.•50 views

CVE-2017-1337

IBM WebSphere MQ 9.0.1 and 9.0.2 Java/JMS application can incorrectly transmit user credentials in plain text. IBM X-Force ID: 126245.

8.1CVSS7.8AI score0.00281EPSS

CVE•added 2025/02/28 3:15 a.m.•47 views

CVE-2025-0975

IBM MQ 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD console could allow an authenticated user to execute code due to improper neutralization of escape characters.

8.8CVSS8.7AI score0.00117EPSS

CVE•added 2019/03/11 10:29 p.m.•40 views

CVE-2018-1998

IBM WebSphere MQ 8.0.0.0 through 9.1.1 could allow a local user to inject code that could be executed with root privileges. This is due to an incomplete fix for CVE-2018-1792. IBM X-ForceID: 154887.

8.8CVSS7.4AI score0.00153EPSS