CVE-2017-1612 — IBM Websphere MQ vulnerability

3 documents3 sources

Severity

7.8HIGHNVD

EPSS

0.1%

top 73.81%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedJan 9

Latest updateMay 13

Description

IBM WebSphere MQ 7.0, 7.1, 7.5, 8.0, and 9.0 service trace module could be used to execute untrusted code under 'mqm' user. IBM X-Force ID: 132953.

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

▶NVDibm/websphere_mq46 versions+45

▶CVEListV5ibm/mq5 versions+4

GHSA

GHSA-5pp4-33gx-7pgq: IBM WebSphere MQ 7↗2022-05-13

▶

CVEList

CVE-2017-1612: IBM WebSphere MQ 7↗2018-01-09

▶