Known Vulnerabilities for Mq by Ibm
Listed below are 10 of the newest known vulnerabilities associated with "Mq" by "Ibm".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-22489 | IBM MQ 8.0, (9.0, 9.1, 9.2 LTS), and (9.1 and 9.2 CD) are vulnerable to an XML External Entity Injection (XXE) attack when pr... | 9.1 - CRITICAL | 2022-08-19 | 2022-08-22 |
| CVE-2022-22321 | IBM MQ Appliance 9.2 CD and 9.2 LTS local messaging users stored with a password hash that provides insufficient protection. ... | 5.5 - MEDIUM | 2022-03-01 | 2023-08-08 |
| CVE-2021-39034 | IBM MQ 9.1 LTS is vulnerable to a denial of service attack caused by an issue within the channel process. IBM X-Force ID: 213... | 7.5 - HIGH | 2022-02-17 | 2022-02-24 |
| CVE-2021-38986 | IBM MQ Appliance 9.2 CD and 9.2 LTS does not invalidate session after logout which could allow an authenticated user to imper... | 5.4 - MEDIUM | 2022-03-01 | 2022-03-09 |
| CVE-2021-38949 | IBM MQ 7.5, 8.0, 9.0 LTS, 9.1 CD, and 9.1 LTS stores user credentials in plain clear text which can be read by a local user. ... | 5.5 - MEDIUM | 2021-11-16 | 2021-11-17 |
| CVE-2021-38875 | IBM MQ 8.0, 9.0 LTS, 9.1 LTS, 9.2 LTS, 9.1 CD, and 9.2 CD is vulnerable to a denial of service attack caused by an error proc... | 6.5 - MEDIUM | 2021-11-23 | 2021-11-24 |
| CVE-2020-4338 | IBM MQ 9.1.4 could allow a local attacker to obtain sensitive information by inclusion of sensitive data within runmqras data... | 5.5 - MEDIUM | 2020-04-16 | 2020-04-22 |
| CVE-2020-4320 | IBM MQ Appliance and IBM MQ AMQP Channels 8.0, 9.0 LTS, 9.1 LTS, and 9.1 CD do not correctly block or allow clients based on ... | 6.5 - MEDIUM | 2020-06-16 | 2020-06-23 |
| CVE-2020-4310 | IBM MQ and MQ Appliance 7.1, 7.5, 8.0, 9.0 LTS, 9.1 LTS, and 9.1 C are vulnerable to a denial of service attack due to an err... | 7.5 - HIGH | 2020-06-16 | 2020-06-20 |
| CVE-2020-4267 | IBM MQ and MQ Appliance 8.0, 9.1 LTS, and 9.1 CD could allow an authenticated user cause a denial of service due to a memory ... | 6.5 - MEDIUM | 2020-04-24 | 2021-07-21 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Ibm | Mq | 9.2.1.0 | All | All | All |
| Application | Ibm | Mq | 9.2.0.0 | All | All | All |
| Application | Ibm | Mq | 9.2.0 | All | All | All |
| Application | Ibm | Mq | 9.2.0 | All | All | All |
| Application | Ibm | Mq | 9.1.5 | All | All | All |
| Application | Ibm | Mq | 9.1.4 | All | All | All |
| Application | Ibm | Mq | 9.1.3.0 | All | All | All |
| Application | Ibm | Mq | 9.1.3 | All | All | All |
| Application | Ibm | Mq | 9.1.2.0 | All | All | All |
| Application | Ibm | Mq | 9.1.2 | All | All | All |
| Application | Ibm | Mq | 9.1.1.0 | All | All | All |
| Application | Ibm | Mq | 9.1.1 | All | All | All |
| Application | Ibm | Mq | 9.1.0.6 | All | All | All |
| Application | Ibm | Mq | 9.1.0.5 | All | All | All |
| Application | Ibm | Mq | 9.1.0.4 | All | All | All |
| Application | Ibm | Mq | 9.1.0.4 | All | All | All |
| Application | Ibm | Mq | 9.1.0.3 | All | All | All |
| Application | Ibm | Mq | 9.1.0.3 | All | All | All |
| Application | Ibm | Mq | 9.1.0.2 | All | All | All |
| Application | Ibm | Mq | 9.1.0.2 | All | All | All |