Websphere Mq Security Vulnerabilities and Issues — Websphere Mq CVE List

Lucene search

IbmWebsphere Mq

3 matches found

CVE•added 2011/10/30 7:55 p.m.•42 views

CVE-2009-0905

IBM WebSphere MQ 6.0 before 6.0.2.8 and 7.0 before 7.0.1.0 does not properly handle long group names, which might allow local users to gain privileges by leveraging combinations of group names with the same initial substring.

1.7CVSS6.6AI score0.00049EPSS

CVE•added 2011/11/26 3:57 a.m.•37 views

CVE-2011-1378

IBM WebSphere MQ 6.0 on OpenVMS, when the default rights of the MQM group are established, does not properly verify User Authorization File (UAF) data, which allows local users to kill listener processes and the command server via a control command.

1.9CVSS6.4AI score0.00051EPSS

CVE•added 2014/10/19 1:55 a.m.•36 views

CVE-2014-4822

IBM WebSphere MQ classes for Java libraries 8.0 before 8.0.0.1 and Websphere MQ Explorer 7.5 before 7.5.0.5 and 8.0 before 8.0.0.2 allow local users to discover preconfigured cleartext passwords via an unspecified trace operation.

1.9CVSS6.5AI score0.0005EPSS