CVE-2020-4766

Name of the Vulnerable Software and Affected Versions IBM MQ Internet Pass-Thru versions 2.1 through 9.2

Description The issue allows a remote user to cause a denial of service by sending malformed MQ data requests which would consume all available resources.

Recommendations For IBM MQ Internet Pass-Thru versions 2.1 through 9.2, consider restricting access to the service to prevent remote users from sending malformed requests until a fix is available. As a temporary workaround, consider implementing resource limits to prevent the consumption of all available resources. At the moment, there is no information about a newer version that contains a fix for this vulnerability.