CVE-2008-1130Improper Authentication in IBM Websphere MQ

CWE-287Improper Authentication3 documents3 sources
Severity
6.6MEDIUMNVD
EPSS
0.1%
top 80.66%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM Websphere MQ
Timeline
PublishedMar 4
Latest updateMay 1

Description

Unspecified vulnerability in IBM WebSphere MQ 6.0.x before 6.0.2.2 and 5.3 before Fix Pack 14 allows attackers to bypass access restrictions for a queue manager via a SVRCONN (MQ client) channel.

CVSS vector

AV:L/AC:L/C:C/I:C/A:NExploitability: 3.9 | Impact: 9.2

Affected Packages1 packages

NVDibm/websphere_mq5.3, 6+1

🔴Vulnerability Details

2
GHSA
GHSA-5mh8-87hf-r6j9: Unspecified vulnerability in IBM WebSphere MQ 62022-05-01
CVEList
CVE-2008-1130: Unspecified vulnerability in IBM WebSphere MQ 62008-03-04
CVE-2008-1130 — Improper Authentication in IBM | cvebase