CVE-2020-4466 — IBM MQ FOR HPE Nonstop vulnerability

3 documents3 sources

Severity

6.5MEDIUMNVD

EPSS

0.3%

top 49.40%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM MQ FOR HPE Nonstop

Timeline

PublishedJul 20

Latest updateMay 24

Description

IBM MQ for HPE NonStop 8.0.4 and 8.1.0 could allow a remote authenticated attacker could cause a denial of service due to an error within the Queue processing function. IBM X-Force ID: 181563.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages2 packages

▶CVEListV5ibm/mq_for_hpe_nonstop8.0.4, 8.1.0+1

▶NVDibm/mq8.0.4, 8.1.0+1

Patches

Patch: www.ibm.com ↗Patch: www.ibm.com ↗

🔴Vulnerability Details

GHSA

GHSA-hwcv-f7qg-ch9g: IBM MQ for HPE NonStop 8↗2022-05-24

▶

CVEList

CVE-2020-4466: IBM MQ for HPE NonStop 8↗2020-07-20

▶