CVE-2020-4310

3 documents3 sources
Severity
7.5HIGH
EPSS
0.6%
top 30.10%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM MQIBM Websphere MQ
Timeline
PublishedJun 16
Latest updateMay 24

Description

IBM MQ and MQ Appliance 7.1, 7.5, 8.0, 9.0 LTS, 9.1 LTS, and 9.1 C are vulnerable to a denial of service attack due to an error within the Data Conversion logic. IBM X-Force ID: 177081.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

NVDibm/mq8.0.0.08.0.0.15+3
CVEListV5ibm/mq4 versions+3
CVEListV5ibm/websphere_mq7.1, 7.5+1
NVDibm/websphere_mq7.1, 7.5+1

🔴Vulnerability Details

2
GHSA
GHSA-8p37-f74w-8c95: IBM MQ and MQ Appliance 72022-05-24
CVEList
CVE-2020-4310: IBM MQ and MQ Appliance 72020-06-16
CVE-2020-4310 (HIGH CVSS 7.5) | IBM MQ and MQ Appliance 7.1 | cvebase.io