First published: Tue Jun 16 2020(Updated: )
IBM MQ and MQ Appliance 7.1, 7.5, 8.0, 9.0 LTS, 9.1 LTS, and 9.1 C are vulnerable to a denial of service attack due to an error within the Data Conversion logic. IBM X-Force ID: 177081.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM MQ | >=8.0.0.0<8.0.0.15 | |
IBM MQ | >=9.0.0.0<9.0.0.10 | |
IBM MQ | >=9.1.0<9.1.5 | |
IBM MQ | >=9.1.0.0<9.1.0.5 | |
IBM WebSphere MQ | =7.1 | |
IBM WebSphere MQ | =7.5 | |
HP HP-UX | ||
IBM AIX | ||
Linux Linux kernel | ||
Microsoft Windows | ||
Oracle Solaris | ||
<=9.1 LTS | ||
<=9.0 LTS | ||
<=8.0 | ||
<=9.1 CD | ||
<=7.1 | ||
<=7.5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2020-4310 is high with a severity value of 7.5.
IBM MQ and MQ Appliance versions 7.1, 7.5, 8.0, 9.0 LTS, 9.1 LTS, and 9.1 CD are affected by CVE-2020-4310.
CVE-2020-4310 is a denial of service vulnerability caused by an error within the Data Conversion logic.
The X-Force ID of CVE-2020-4310 is 177081.
You can find more information about CVE-2020-4310 at the following URLs: [Reference 1](https://exchange.xforce.ibmcloud.com/vulnerabilities/177081), [Reference 2](https://www.ibm.com/support/pages/node/6223914).