IBM MQ Multiple Vulnerabilities
Release Date:
7 Sep 2023
4429
Views
RISK: Medium Risk
TYPE: Servers - Network Management
Multiple vulnerabilities were identified in IBM MQ. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, sensitive information disclosure and data manipulation on the targeted system.
Impact
- Denial of Service
- Information Disclosure
- Data Manipulation
System / Technologies affected
- IBM MQ 9.0 LTS
- IBM MQ 9.1 LTS
- IBM MQ 9.2 LTS
- IBM MQ 9.3 LTS
- IBM MQ 9.3 CD
- IBM MQ Appliance 9.3 LTS
- IBM MQ Appliance 9.2 LTS
- IBM MQ Appliance 9.3 CD
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- https://www.ibm.com/support/pages/node/7029996
- https://www.ibm.com/support/pages/node/7029995
- https://www.ibm.com/support/pages/node/7027923
- https://www.ibm.com/support/pages/node/7027922
- https://www.ibm.com/support/pages/node/7027914
Vulnerability Identifier
Source
Related Link
- https://www.auscert.org.au/bulletins/ESB-2023.5069
- https://www.auscert.org.au/bulletins/ESB-2023.5068
- https://www.auscert.org.au/bulletins/ESB-2023.5066
- https://www.auscert.org.au/bulletins/ESB-2023.5065
- https://www.auscert.org.au/bulletins/ESB-2023.5064
- https://www.ibm.com/support/pages/node/7029996
- https://www.ibm.com/support/pages/node/7029995
- https://www.ibm.com/support/pages/node/7027923
- https://www.ibm.com/support/pages/node/7027922
- https://www.ibm.com/support/pages/node/7027914
Share with