Vulnerabilities > CVE-2021-38950 - Unspecified vulnerability in IBM MQ for HPE Nonstop 8.0.4/8.1.0

047910
CVSS 7.8 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
local
low complexity
ibm
NVD
Published: 2021-12-14
Updated: 2022-07-12

Summary

IBM MQ on HPE NonStop 8.0.4 and 8.1.0 is vulnerable to a privilege escalation attack when SharedBindingsUserId is set to effective. IBM X-ForceID: 211404.

Vulnerable Configurations

Part Description Count
Application
Ibm
2

References