PT-2020-18034 · Ibm · Ibm Mq+2
Published
2020-07-28
·
Updated
2021-07-21
·
CVE-2020-4375
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
IBM MQ versions 8.0 through 9.1 LTS
IBM MQ Appliance versions 8.0 through 9.1 LTS
IBM MQ for HPE NonStop versions 8.0 through 9.1 LTS
Description
The issue is caused by a memory leak resulting from an error when creating a dynamic queue, which could allow an attacker to cause a denial of service.
Recommendations
For IBM MQ versions 8.0 through 9.1 LTS, update to a version that includes the fix for the memory leak issue.
For IBM MQ Appliance versions 8.0 through 9.1 LTS, update to a version that includes the fix for the memory leak issue.
For IBM MQ for HPE NonStop versions 8.0 through 9.1 LTS, update to a version that includes the fix for the memory leak issue.
Fix
Memory Leak
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Mq
Ibm Mq Appliance
Ibm Mq For Hpe Nonstop