Vulnerabilities > IBM > MQ > 9.1.0.6

DATE CVE VULNERABILITY TITLE RISK
2024-06-28 CVE-2024-35116 Allocation of Resources Without Limits or Throttling vulnerability in IBM MQ
IBM MQ 9.0 LTS, 9.1 LTS, 9.2 LTS, 9.3 LTS, and 9.3 CD is vulnerable to a denial of service attack caused by an error applying configuration changes.
network
low complexity
ibm CWE-770
7.5
7.5
2022-02-17 CVE-2021-39034 Unspecified vulnerability in IBM MQ
IBM MQ 9.1 LTS is vulnerable to a denial of service attack caused by an issue within the channel process.
network
low complexity
ibm
7.5
7.5
2021-01-28 CVE-2020-4682 Deserialization of Untrusted Data vulnerability in IBM MQ, MQ Appliance and Websphere MQ
IBM MQ 7.5, 8.0, 9.0, 9.1, 9.2 LTS, and 9.2 CD could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe deserialization of trusted data.
network
low complexity
ibm CWE-502
critical
 9.8
9.8
2019-09-26 CVE-2019-4378 Unspecified vulnerability in IBM MQ
IBM MQ 7.5.0.0 - 7.5.0.9, 7.1.0.0 - 7.1.0.9, 8.0.0.0 - 8.0.0.12, 9.0.0.0 - 9.0.0.6, 9.1.0.0 - 9.1.0.2, and 9.1.0 - 9.1.2 command server is vulnerable to a denial of service attack caused by an authenticated and authorized user using specially crafted PCF messages.
network
low complexity
ibm
6.5
6.5