Vulnerabilities > IBM > Websphere MQ

DATE CVE VULNERABILITY TITLE RISK
2022-09-29 CVE-2012-2201 Unspecified vulnerability in IBM Websphere MQ 7.1
IBM WebSphere MQ 7.1 is vulnerable to a denial of service, caused by an error when handling user ids.
network
low complexity
ibm
7.5
7.5
2021-11-16 CVE-2021-38949 Cleartext Storage of Sensitive Information vulnerability in IBM MQ and Websphere MQ
IBM MQ 7.5, 8.0, 9.0 LTS, 9.1 CD, and 9.1 LTS stores user credentials in plain clear text which can be read by a local user.
local
low complexity
ibm CWE-312
5.5
5.5
2021-01-28 CVE-2020-4682 Deserialization of Untrusted Data vulnerability in IBM MQ, MQ Appliance and Websphere MQ
IBM MQ 7.5, 8.0, 9.0, 9.1, 9.2 LTS, and 9.2 CD could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe deserialization of trusted data.
network
low complexity
ibm CWE-502
critical
 9.8
9.8
2020-06-16 CVE-2020-4310 Unspecified vulnerability in IBM MQ and Websphere MQ
IBM MQ and MQ Appliance 7.1, 7.5, 8.0, 9.0 LTS, 9.1 LTS, and 9.1 C are vulnerable to a denial of service attack due to an error within the Data Conversion logic.
network
low complexity
ibm
7.5
7.5
2020-03-16 CVE-2019-4719 Unspecified vulnerability in IBM MQ and MQ Appliance
IBM MQ and IBM MQ Appliance 7.1, 7.5, 8.0, 9.0 LTS, 9.1 LTS, and 9.1 CD could allow a local attacker to obtain sensitive information by inclusion of sensitive data within runmqras data.
local
low complexity
ibm
5.5
5.5
2020-03-16 CVE-2019-4656 Unspecified vulnerability in IBM MQ, MQ Appliance and Websphere MQ
IBM MQ and IBM MQ Appliance 7.1, 7.5, 8.0, 9.0 LTS, 9.1 LTS, and 9.1 CD is vulnerable to a denial of service attack that would allow an authenticated user to crash the queue and require a restart due to an error processing error messages.
network
low complexity
ibm
6.5
6.5
2020-03-16 CVE-2019-4619 Information Exposure Through an Error Message vulnerability in IBM MQ and MQ Appliance
IBM MQ and IBM MQ Appliance 7.1, 7.5, 8.0, 9.0 LTS, 9.1 LTS, and 9.1 CD could allow a local attacker to obtain sensitive information by inclusion of sensitive data within trace.
local
low complexity
ibm CWE-209
5.5
5.5
2020-01-23 CVE-2012-4863 Resource Exhaustion vulnerability in IBM Websphere MQ 7.1.0.0/7.1.0.1/7.5.0.0
IBM WebSphere MQ 7.1 and 7.5: Queue manager has a DoS vulnerability
network
low complexity
ibm CWE-400
6.5
6.5
2019-09-27 CVE-2019-4141 Memory Leak vulnerability in IBM Websphere MQ and Websphere MQ Appliance
IBM MQ 7.1.0.0 - 7.1.0.9, 7.5.0.0 - 7.5.0.9, 8.0.0.0 - 8.0.0.11, 9.0.0.0 - 9.0.0.6, 9.1.0.0 - 9.1.0.2, and 9.1.1 - 9.1.2 is vulnerable to a denial of service attack caused by a memory leak in the clustering code.
network
low complexity
ibm CWE-401
6.5
6.5
2019-08-05 CVE-2019-4261 Unspecified vulnerability in IBM MQ and Websphere MQ
IBM WebSphere MQ V7.1, 7.5, IBM MQ V8, IBM MQ V9.0LTS, IBM MQ V9.1 LTS, and IBM MQ V9.1 CD are vulnerable to a denial of service attack caused by specially crafted messages.
network
low complexity
ibm
6.5
6.5