CVE-2022-40237: IBM MQ for HPE NonStop denial of service
First published: Wed Feb 22 2023(Updated: )
IBM MQ for HPE NonStop 8.1.0 is vulnerable to a denial of service attack due to an error within the CCDT and channel synchronization logic. IBM X-Force ID: 235727.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM MQ for HPE NonStop | =8.1.0 | |
| IBM MQ for HPE NonStop | <=8.1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for IBM MQ?
The vulnerability ID for IBM MQ is CVE-2022-40237.
What is the severity of CVE-2022-40237?
The severity of CVE-2022-40237 is high with a severity value of 7.5.
What is the affected software for CVE-2022-40237?
The affected software for CVE-2022-40237 is IBM MQ for HPE NonStop 8.1.0.
How does CVE-2022-40237 impact IBM MQ for HPE NonStop?
CVE-2022-40237 allows attackers to perform a denial of service attack on IBM MQ for HPE NonStop due to an error within the CCDT and channel synchronization logic.
Is there a fix for CVE-2022-40237?
Yes, IBM has provided a fix for CVE-2022-40237. It is recommended to apply the latest updates to IBM MQ for HPE NonStop to mitigate the vulnerability.
- collector/nvd-index
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/weakness
- agent/title
- agent/last-modified-date
- agent/remedy
- agent/description
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- collector/ibm-support
- source/IBM
- agent/software-canonical-lookup
- agent/tags
- agent/trending
- vendor/ibm
- canonical/ibm mq for hpe nonstop
- version/ibm mq for hpe nonstop/8.1.0