Josh Mciver

**Name of the Vulnerable Software and Affected Versions** IBM MQ versions 9.1.0.0 through 9.1.1 **Description** The issue allows a local user to cause a denial of service by filling up the disk space of the underlying filesystem using the error logging service. **Recommendations** For IBM MQ versions 9.1.0.0 through 9.1.1, consider restricting access to the error logging service to prevent local users from filling up the disk space. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** IBM WebSphere MQ versions 8.0.0.0 through 9.1.1 **Description** The issue allows a local user to inject code that could be executed with root privileges due to an incomplete fix. **Recommendations** For versions 8.0.0.0 through 9.1.1, at the moment, there is no information about a newer version that contains a fix for this issue.