Vulnerabilities > IBM > MQ > 8.0.0.14

DATE CVE VULNERABILITY TITLE RISK
2021-01-28 CVE-2020-4682 Deserialization of Untrusted Data vulnerability in IBM MQ, MQ Appliance and Websphere MQ
IBM MQ 7.5, 8.0, 9.0, 9.1, 9.2 LTS, and 9.2 CD could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe deserialization of trusted data.
network
low complexity
ibm CWE-502
critical
 9.8
9.8
2020-06-16 CVE-2020-4320 Improper Certificate Validation vulnerability in IBM MQ
IBM MQ Appliance and IBM MQ AMQP Channels 8.0, 9.0 LTS, 9.1 LTS, and 9.1 CD do not correctly block or allow clients based on the certificate distinguished name SSLPEER setting.
network
low complexity
ibm CWE-295
6.5
6.5
2020-06-16 CVE-2020-4310 Unspecified vulnerability in IBM MQ and Websphere MQ
IBM MQ and MQ Appliance 7.1, 7.5, 8.0, 9.0 LTS, 9.1 LTS, and 9.1 C are vulnerable to a denial of service attack due to an error within the Data Conversion logic.
network
low complexity
ibm
7.5
7.5