Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Websphere_mq
(Ibm)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 89 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2017-02-24 | CVE-2016-9009 | IBM WebSphere MQ 8.0 could allow an authenticated user with authority to create a cluster object to cause a denial of service to MQ clustering. IBM Reference #: 1998647. | Websphere_mq | 3.1 | ||
| 2017-02-22 | CVE-2016-8986 | IBM WebSphere MQ 8.0 could allow an authenticated user with access to the queue manager to bring down MQ channels using specially crafted HTTP requests. IBM Reference #: 1998648. | Websphere_mq | 6.5 | ||
| 2017-03-07 | CVE-2016-8971 | IBM WebSphere MQ 8.0 could allow an authenticated user with queue manager permissions to cause a segmentation fault which would result in the box having to be rebooted to resume normal operations. IBM Reference #: 1998663. | Websphere_mq | 6.5 | ||
| 2017-02-22 | CVE-2016-8915 | IBM WebSphere MQ 8.0 could allow an authenticated user with access to the queue manager and queue, to deny service to other channels running under the same process. IBM Reference #: 1998649. | Websphere_mq | 6.5 | ||
| 2017-06-07 | CVE-2016-6089 | IBM WebSphere MQ 9.0.0.1 and 9.0.2 could allow a local user to write to a file or delete files in a directory they should not have access to due to improper access controls. IBM X-Force ID: 117926. | Websphere_mq | 5.5 | ||
| 2017-02-22 | CVE-2016-3052 | Under non-standard configurations, IBM WebSphere MQ might send password data in clear text over the network. This data could be intercepted using man in the middle techniques. | Websphere_mq | 5.9 | ||
| 2017-02-22 | CVE-2016-3013 | IBM WebSphere MQ 8.0 could allow an authenticated user to crash the MQ channel due to improper data conversion handling. IBM Reference #: 1998661. | Websphere_mq | 6.5 | ||
| 2016-09-26 | CVE-2016-0379 | IBM WebSphere MQ 7.5 before 7.5.0.7 and 8.0 before 8.0.0.5 mishandles protocol flows, which allows remote authenticated users to cause a denial of service (channel outage) by leveraging queue-manager rights. | Websphere_mq | 3.1 | ||
| 2016-06-28 | CVE-2016-0260 | Memory leak in queue-manager agents in IBM WebSphere MQ 8.x before 8.0.0.5 allows remote attackers to cause a denial of service (heap memory consumption) by triggering many errors. | Websphere_mq | 7.5 | ||
| 2016-06-26 | CVE-2016-0259 | runmqsc in IBM WebSphere MQ 8.x before 8.0.0.5 allows local users to bypass an intended +dsp authority requirement and obtain sensitive information via unspecified display commands. | Websphere_mq | 2.5 |