PT-2019-17048 · Ibm · Ibm Mq
Publicado
2019-09-26
·
Atualizado
2022-01-01
·
CVE-2019-4378
CVSS v3.1
6.5
Média
| Vetor | AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
IBM MQ versions 7.1.0.0 through 7.1.0.9
IBM MQ versions 7.5.0.0 through 7.5.0.9
IBM MQ versions 8.0.0.0 through 8.0.0.12
IBM MQ versions 9.0.0.0 through 9.0.0.6
IBM MQ versions 9.1.0.0 through 9.1.0.2
IBM MQ versions 9.1.0 through 9.1.2
Description
The issue is caused by an authenticated and authorized user using specially crafted PCF messages, leading to a denial of service attack.
Recommendations
For IBM MQ versions 7.1.0.0 through 7.1.0.9, update to a version outside of this range to resolve the issue.
For IBM MQ versions 7.5.0.0 through 7.5.0.9, update to a version outside of this range to resolve the issue.
For IBM MQ versions 8.0.0.0 through 8.0.0.12, update to a version outside of this range to resolve the issue.
For IBM MQ versions 9.0.0.0 through 9.0.0.6, update to a version outside of this range to resolve the issue.
For IBM MQ versions 9.1.0.0 through 9.1.0.2, update to a version outside of this range to resolve the issue.
For IBM MQ versions 9.1.0 through 9.1.2, update to a version outside of this range to resolve the issue.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Ibm Mq